What is Sticky Bit, SUID and SGID in Linux

Written by Rahul, Updated on June 19, 2019

This tutorial will help you to under the Sticky bit, SUID and SGID file permissions under Linux system.

What is Sticky Bit?

The sticky bit is used to indicate special permissions for files and directories. If a directory with sticky bit enabled will restrict deletion of the file inside it. It can be removed by the root, owner of the file or who have to write permission on it. This is useful for publically accessible directories like /tmp.

Here is the implementation of Sticky bit on file on Linux system.
Method 1:

chmod +t tecadmin.txt
ls -l tecadmin.txt
-rw-r--r-T 1 root root 0 Mar  8 02:06 tecadmin.txt

Mothod 2:

chmod 1777 tecadmin.txt
ls -l tecadmin.txt
-rwxrwxrwt 1 root root 0 Mar  8 02:06 tecadmin.txt

In above output it showing sticky bit is set with character t or T in permissions filed. Small t represent that execute permission also enable and capital T represent that execute permission are not enabled.

What is SUID (setuid)?

If SUID bit is set on a file and a user executed it. The process will have the same rights as the owner of the file being executed.

For example: passwd command have SUID bit enabled. When a normal user changes his password this script update few system files like /etc/passwd and /etc/shadow which can’t be updated by non-root account. So that passwd command process always run with root user rights.

Here is the implementation of SUID on file under Linux system.

Mehtod 1:

chmod u+s tecadmin.txt
ls -l tecadmin.txt
-rwsr-xr-x 1 root root 0 Mar  8 02:06 tecadmin.txt

Method 2:

chmod 4655 tecadmin.txt
ls -l tecadmin.txt
-rwSr-xr-x 1 root root 0 Mar  8 02:06 tecadmin.txt

What is SGID (setgid)?

Same as SUID, The process will have the same group rights of the file being executed. If SGID bit is set on any directory, all subdirectories and files created inside will get the same group ownership as the main directory, it doesn’t matter who is creating.

Here is the implementation of SGID on directory on Linux system.

chmod g+s /test/
ls -ld /test
drwxrwsrwx 2 root root 4096 Mar  8 03:12 /test

Now swich to other user and create a file in /test directory.

su - tecadmin
cd /test/
touch tecadmin.net.txt
ls -l tecadmin.net.txt
-rw-rw-r-- 1 tecadmin root 0 Mar  8 03:13 tecadmin.net.txt

In above example tecadmin.net.txt is created with root group ownership.

Thanks for reading this article, I hope it will help you to understand the sticky bit, SUID, and SGID in Linux.

Rahul

I, Rahul Kumar am the founder and chief editor of TecAdmin.net. I am a Red Hat Certified Engineer (RHCE) and working as an IT professional since 2009..

8 Comments

sanjeev Reply to sanjeev to sanjeev" aria-label=' Reply to sanjeev to sanjeev'> Reply to sanjeev
July 10, 2019 at 3:29 pm
I have a question : if a user can change his password with passwd command on which suid is set, means he get the root permission to make changes in /etc/passwdord and /etc/shadow file then how that user can not change the password of other users which permission prevents users to do that..
Ganesh Bagde Reply to Ganesh to Ganesh Bagde" aria-label=' Reply to Ganesh to Ganesh Bagde'> Reply to Ganesh
April 16, 2015 at 6:32 am
Hi,
Thanks for shared article with us.. It is really good, I cleared my confussion when I was read your document.
Rathin Reply to Rathin to Rathin" aria-label=' Reply to Rathin to Rathin'> Reply to Rathin
October 26, 2013 at 3:23 am
I would like to add a more point on SB, SUID and SGIDd which is important to keep it in mind and for reference.
small “s” – symbolically says the file has no execute persmission
capital “S’ – has sticky bit , suid or sgid enables with execute permission
for example:
rwSrwxrwx — has no execute permission for the owner/normal user who runs a script if applicable
where as
rwsrwxrwx — is sound meaningful.
Sahil Reply to Sahil to Sahil" aria-label=' Reply to Sahil to Sahil'> Reply to Sahil
September 8, 2013 at 1:39 pm
Sir,
Thank you for nice post,
But I have question, I try to create a script under /usr/bin/ directory after that i created a file uder /etc dir and give the . And give the permision chmod u+s /etc/filename, now i try to run as a normal user , it is running but not able to edit this file /etc/filename ???
where as you said after passwd command , there will some changes in /etc/shaddow and /etc/passwd file ..
Please help me
- Rahul Reply to Rahul to Rahul" aria-label=' Reply to Rahul to Rahul'> Reply to Rahul
  September 9, 2013 at 2:52 am
  Hi Sahil,
  First thing you need to SUID to your script created under /usr/bin/. Can you send me the result of ls -l of both files ?
  - Sahil Reply to Sahil to Sahil" aria-label=' Reply to Sahil to Sahil'> Reply to Sahil
    September 9, 2013 at 3:14 am
    Hi Rahul Sir,
    [[email protected] ~]# ls -l /usr/bin/mytest
    -rwsr-xr-x 1 root root 52 Sep 9 08:41 /usr/bin/mytest
    [[email protected] ~]# ls -l /etc/myfile
    -rw-r–r– 1 root root 24 Sep 9 08:41 /etc/myfile
    - iceman94 Reply to iceman94 to iceman94" aria-label=' Reply to iceman94 to iceman94'> Reply to iceman94
      January 27, 2014 at 4:27 am
      Hi.
      In some patterm, SUID not work for shell script
      http://www.faqs.org/faqs/unix-faq/faq/part4/section-7.html
QuickBooks Hosting Reply to QuickBooks to QuickBooks Hosting" aria-label=' Reply to QuickBooks to QuickBooks Hosting'> Reply to QuickBooks
September 2, 2013 at 3:46 am
Great explanation it really saved my time, keep doing the nice work.
Thank you very much.
David