brachive - backint permission to ...

[cyberZ]

Hi all,

I hope this is the correct thread.

System is AIX

I have:

drwxr-xr-x 37 root system 12288 Jul 15 18:03 /etc
drwxr-x--- 5 root security 4096 Jul 14 15:23 /etc/security
drwxr-xr-x 3 root system 256 Jul 15 16:20 /etc/security/adsm

and in /etc/security/adsm:

-rw------- 1 orausr system 204 Jul 15 17:23 TSM.PWD

the brarchive is setuid to oraadm(admin) user:

-rwsrwxr-x 1 oraadm dba 4887637 Sep 07 2007 /usr/sap/TR2/SYS/exe/run/brarchive

the backint is:

-rwxr-xr-x 1 oraadm syssap 20739504 Jul 20 2006 /usr/tivoli/tsm/tdp_r3/ora64/backint

Neither of these user/groups is associated in /etc/group with system, security or root.

When I su to orausr and launch:

backint -p initfile.utl.online -f password

then it write in to /etc/security/adsm the file TSM.PWD with user oraadm and group system. But that path should not available to backint and brarchive with the permission posted above. The suid is to oraadm not to root.

How can the backint do this? Is a magic program?

best regards

Thank in advance

p.s. excuse me for my bad English