From owner-freebsd-hackers Tue Oct 24 11:10:03 1995 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.6.12/8.6.6) id LAA24322 for hackers-outgoing; Tue, 24 Oct 1995 11:10:03 -0700 Received: from phaeton.artisoft.com (phaeton.Artisoft.COM [198.17.250.211]) by freefall.freebsd.org (8.6.12/8.6.6) with ESMTP id LAA24312 for ; Tue, 24 Oct 1995 11:10:01 -0700 Received: (from terry@localhost) by phaeton.artisoft.com (8.6.11/8.6.9) id LAA13749; Tue, 24 Oct 1995 11:01:31 -0700 From: Terry Lambert Message-Id: <199510241801.LAA13749@phaeton.artisoft.com> Subject: Re: ld.so, LD_NOSTD_PATH, and suid/sgid programs To: davidg@root.com Date: Tue, 24 Oct 1995 11:01:31 -0700 (MST) Cc: ache@freefall.freebsd.org, freebsd-hackers@FreeBSD.ORG In-Reply-To: <199510240516.WAA00371@corbin.Root.COM> from "David Greenman" at Oct 23, 95 10:16:08 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Content-Length: 875 Sender: owner-hackers@FreeBSD.ORG Precedence: bulk > >>I don't think you're 'script' is at all convincing, at least not to me. > >>In any case it appears the consensus is to remove this feature from use, > >>which I also agree would be a good thing. > > > >I vote for complete removing LD_NOSTD_PATH too. > > Well then, we are in complete unanimous agreement on this issue. John P. > has already indicated that he'll be removing it from ld.so. Why? This has no effect. It is ignored by startup because the loader does not respect it: the cache path is still checked. A complete fix on the order of the SunOS security update would require that the image contain the link time library path. As it currently sits, it's not harmful, and it represents a direction that is desirable. Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.