What is the major security problem with the SUID/SGID programs or utilities?

adminNovember 16, 2013

PrepAway - Latest Free Exam Questions & Answers

A.
The root account must be in order to utilize programs set this way

B.
These permission in a program in a program can temporarily grant root privileges to anyone

C.
SUID programs are not removed immediately from the swap/paging area, which results in a clear security risk

D.
The SGID is a clear violation of good security practice and is only used as a result of the SUID

Explanation:
When a program changes its UID, it then gets a SUID (SetUID). If it was a GID, then it would be called a SGID. A SUID or GUID will grant a user more permissions than was initially entitled. This even includes setting the user as root.
Incorrect Answers:
A: You don’t have to be root to gain root.
C: This is not true.
D: The SGID has to be used in certain situations.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

CIW Exam Questions

Free CIW Study Guide

What is the major security problem with the SUID/SGID programs or utilities?

Leave a Reply Cancel reply