While troubleshooting why a regular user is able to modify /etc/shadow when running the passwd utility, you see that /usr/bin/passwd is owned by root and has the setuid bit set (mode 4755). When the binary executes, which user identifier does the Linux kernel actually evaluate to determine whether the process may write to /etc/shadow?
The saved UID (suid) recorded so the program can later drop privileges
The real UID (ruid) that belongs to the user who typed the command
The effective UID (euid) that changes to root because of the setuid bit
The file-system UID (fsuid) that stays equal to the invoking user's UID
The setuid bit causes the kernel to replace the process's effective user ID with the UID of the file owner (root). During almost all permission checks-including the attempt to open /etc/shadow for writing-the kernel looks at the effective UID, not the real, saved, or filesystem UID values. The real UID (ruid) remains that of the invoking user and is not consulted for file-access decisions; the saved UID simply lets the program drop and regain privilege; the fsuid is normally copied from the euid and is not separately employed here.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of the setuid bit in Linux?
Open an interactive chat with Bash
What is the difference between the real UID and effective UID in Linux?
Open an interactive chat with Bash
How does `/etc/shadow`'s permissions affect access control with setuid programs?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Services and User Management
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .