From aed9792fae533e80299fb0893e64f1f34548047f Mon Sep 17 00:00:00 2001 From: Gleb Smirnoff Date: Thu, 13 Jan 2005 15:07:35 +0000 Subject: [PATCH] Don't do setuid checks on file systems mounted with noexec option. Reviewed by: brian, ru MFC after: 1 week --- etc/periodic/security/100.chksetuid | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/etc/periodic/security/100.chksetuid b/etc/periodic/security/100.chksetuid index f5b5f82f208..789914afb30 100755 --- a/etc/periodic/security/100.chksetuid +++ b/etc/periodic/security/100.chksetuid @@ -44,7 +44,7 @@ case "$daily_status_security_chksetuid_enable" in echo "" echo 'Checking setuid files and devices:' # XXX Note that there is the possibility of overrunning the args to ls - MP=`mount -t ufs | grep -v " nosuid" | awk '{ print $3 }' | sort` + MP=`mount -t ufs | egrep -v " no(suid|exec)" | awk '{ print $3 }' | sort` if [ -n "${MP}" ] then set ${MP}