[kismac] Re: suid off

  • From: Rob Frohne <frohro@xxxxxxx>
  • To: kismac@xxxxxxxxxxxxx
  • Date: Thu, 28 Apr 2005 07:41:30 -0700

Does this incantation remove the problem that Apple made with Mic's scripts?

Apple snuck in a worthwhile security fix in the release. They turned off the ability to use the SETUID bit in file permissions which allows any user to start up an admin process. Most modern Unix systems have removed this feature as a serious security risk.

Many apps use this to start up on a reboot or login. One way this manifests itself is that the application will run when installed, but not after login.

The following command will re-enable the SETUID bit. It only works on 10.3.9, not earlier releases. WARNING: Your system is now vulnerable. Use at your own risk (and all the other usual disclaimers).

sudo sysctl -w kern.sugid_scripts=1

I got it from:



On Apr 24, 2005, at 1:21 AM, ard jonker wrote:

At 10:37 +0200 2005/04/23, Michael Rossberg wrote:
apple removed the ability to run SUID scripts for security reasons. thus i would have to convert all my scripts into a real programs before it will work again. something i dont have the time for right now :o/ sorry

For those trying to switch off the suid checkmark in the prefs: this also is sometimes not possible. You uncheck it, close the prefs and open the prefs, the suid checkmark is there again. Solve this issue by using an old installer to uninstall kismac, then drag the newly built kismac into your apps folder. By only removing the prefs file, you will not rid the checkmark...


Rob Frohne, Ph.D., P.E.
E.F. Cross School of Engineering
Walla Walla College

Other related posts: