> As a sysadmin, I would not want my /bin /sbin exposed to everyone. Why not? It... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Athas on May 11, 2022 \| parent \| context \| favorite \| on: Understanding the bin, sbin, usr/bin, usr/sbin spl... > As a sysadmin, I would not want my /bin /sbin exposed to everyone. Why not? It's not like most of them are suid (right?). Most Unix systems I've used allow any user to peruse /sbin at their leisure and run whatever they want.

digitalsankhara on May 11, 2022 [–]

Apologies if I'm missing your point, but yikes - any user on your system can run /sbin/shutdown?

Athas on May 11, 2022 | [–]

Yes of course, just like on more or less any Linux system. But IIRC, shutdown is a suid binary that will do its own permission checks while running. The permissions on the /sbin/ directory should not matter.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact