Hi all, I'm a newbie looking for an answer I've not found:
I'm trying to block executable files running in a ZFS dataset. So I set setuid=off and exec=off in a data ZFS dataset
But when I execute a simple 'program' script:
It runs ok; Maybe I don't understand the real meaning of setuid/exec;
Thank you for help or tell me where I can found info;
I'm trying to block executable files running in a ZFS dataset. So I set setuid=off and exec=off in a data ZFS dataset
Code:
root@LUNA:/opt/test # zfs get setuid,exec DEPO_LUNA/data/test
NAME PROPERTY VALUE SOURCE
DEPO_LUNA/data/test setuid off inherited from DEPO_LUNA/data
DEPO_LUNA/data/test exec off inherited from DEPO_LUNA/data
But when I execute a simple 'program' script:
Code:
root@LUNA:/opt/test # ls
program
root@LUNA:/opt/test # csh program
hello world
It runs ok; Maybe I don't understand the real meaning of setuid/exec;
Thank you for help or tell me where I can found info;