logo
Blue team
Taming permissions, xattrs & the dangers of SUID/SGID
  • Red team
  • Green team
  • Purple team
  • Indigo team
  • Broomstick Brief
  • Ty Myrddin
Initializing search
      • Blue team @SOC
      • Blue team for dev
      • Blue team @Home
      • Bulletproofing servers
        • The wake-up call
        • Hardening Linux server
          • User account sanity checks
          • Remove unnecessary services
          • Preventing unauthorised access while respecting privacy
          • The CIA triad framework for security
          • Title
          • Taming permissions, xattrs & the dangers of SUID/SGID
            • Discretionary access control (DAC)
            • Access control lists (ACL) and shared directory management (SDM)
            • Mandatory access control (MAC)
          • Taming permissions, xattrs & the dangers of SUID/SGID
            • Discretionary access control (DAC)
            • Access control lists (ACL) and shared directory management (SDM)
            • Mandatory access control (MAC)
          • PKI: The beautiful mess of digital trust (and why nothing works properly)
          • From basic monitoring to intrusion detection
          • Continuous host monitoring and threat detection
          • Incident response plan
          • Troubleshooting
        • Hardening webserver
        • Smarter mail servers
      • Honeytech for humans

    Taming permissions, xattrs & the dangers of SUID/SGIDΒΆ

    • Protecting sensitive files and directories by setting proper permissions and ownership, and by using Extended Attributes (xattr).

    • Avoiding security related problems with Set User ID (SUID) and Set Group ID (SGID).

    Configuring access control

    • Discretionary access control (DAC)
    • Access control lists (ACL) and shared directory management (SDM)
    • Mandatory access control (MAC)
    Last update: 2025-05-19 17:28
    Back to top
    Previous Securing sessions
    Next Discretionary access control (DAC)
    © Copyright 2025, TyMyrddin.
    Created using Sphinx 7.2.6. and Sphinx-Immaterial

    Made with love in the Unseen University, 2025, with a forest garden fostered by /ut7