setuid binaries are not the only way to get root. E.g. one can change /etc/crontab or /etc/passwd. Or add trojan to /bin/ls and wait until admin type 'ls'
replyIt's not always as easy as you imply. All the attack vectors you mentioned, require root on the host, before you can make the change or install the trojan.
reply