Skip to content
Latchkey

What Is the Setuid Bit?

The setuid bit is a permission flag on an executable that causes it to run with the user identity of the file owner instead of the user who started it. It is how unprivileged users can run specific tools that need elevated rights, such as changing their password. Because it grants privilege, setuid programs are a sensitive security surface.

Why it matters

Setuid binaries are a frequent target for privilege escalation, so hardened CI images often remove or audit them. Knowing the bit explains how a program can act with more privilege than the calling user.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →