Security - World is Welcome To The World of Linux

Why SUID Programs Are Dangerous

Posted on April 29, 2009 by Ganesh Sharma

SUID programs in Unix based systems are one of the most dangerous things you can every have one your systems. Today I’m gonna discuss the dangers of SUID programs in Unix based system. For system security, often it’s suggested to keep minimum or no suid programs in the systems. Here is a brief introduction and practicle demo of the dangers of SUID programs. I start from the definition and then explain a bit about these programs and then give an example to make you understand.

CC, CAPP, LSPP and EAL4+

Posted on December 30, 2008 by Ganesh Sharma

If a system is evaluated according to CC, then it will remain valid only till the specific hardware/software configuration of the system is unchanged. Making any changes to the configuration brings the system in non evaluated state. That simply means that system