How to Find Files With SUID and SGID Permissions in Linux?

SUID is a special file permission for executable files which enables other users to run the file with effective permissions of the file owner. Instead of the normal x which represents execute permissions, you will see an s(to indicate SUID) special permission for the user.

SGID is a special file permission that also applies to executable files and enables other users to inherit the effective GID of file group owner. Likewise, rather than the usual x which represents execute permissions, you will see an s (to indicate SGID) special permission for group user.

To find files which have SUID and SGID set using the find command.

The syntax is as follows:

$ find directory -perm /permissions

 

How to Find Files with SUID Set in Linux

This below example command will find all files with SUID set in the current directory using -perm (print files only with permissions set to 4000) option.

$ find . -perm /4000 


You can use the ls command with -l option (for long listing) to view the permissions on the listed files as shown in the image above.


How to Find Files with SGID Set in Linux

To find files which have SGID set, type the following command.

$ find . -perm /2000

To find files which have both SUID and SGID set, run the command below.

$ find . -perm /6000
Was this answer helpful? 0 Users Found This Useful (0 Votes)