There are a lot of things listed here that are examples of "use of privileges results in use of privileges". As an example, your listing for cat
includes:
File read -
"It reads data from files," - It sure does!
"it may be used to do privileged reads" - Iff the parent process is privileged, in which case, the cat (no pun intended) is out of the bag.
"or disclose files outside a restricted file system." - What does that even mean?
This applies to all instances of "File read", not just cat
.
SUID -
"It runs with the SUID bit set" - Not on my box. Not any anybody's box (within experimental error).
"This example creates a local SUID copy of the binary and runs it to maintain elevated privileges." - If you have the capability to add SUID to cat
, you don't need to add SUID to cat
.
This applies to all instances of "SUID", not just cat
.
Sudo -
"It runs in privileged context and may be used to access the file system, escalate or maintain access with elevated privileges if enabled on sudo." - That's literally what sudo
is designed to do. Running sudo
results in elevated privileges, by design.
This applies to all instances of "Sudo", not just cat
.