Date: Mon, 1 May 1995 08:29:49 +0200 (SAT) From: geoff@neptune.ru.ac.za (Geoff Rehmet) To: ache@astral.msk.su (Andrey A. Chernov, Black Mage) Cc: arch@FreeBSD.org, core@FreeBSD.org, security@FreeBSD.org Subject: Re: Call for remove setr[ug]id() and setre[ug]id() from libc Message-ID: <m0s5ozP-0000CpC@neptune.ru.ac.za> In-Reply-To: <tPZVfbladA@astral.msk.su> from "Andrey A. Chernov, Black Mage" at Apr 20, 95 09:20:35 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Andrey A. Chernov, Black Mage writes : > > More info: > osetreuid/osetregid syscalls check arguments in the same > way that lib function does, and they are only a little bit safe, > because testing of s[rg]id independs of place calling. > > They both can't be implemented, they are violation of POSIX, > so I prefer to remove them to not make security hole. > If none object, I'll commit the change. (I should have replied to this earlier.) I am in favour of the removal of these calls. We must just be a little bit careful about what the effect is on library interfaces when these are removed. (Remember that a change like this involves a major version bump. -- there's been a lot of water under this bridge before) Geoff. -- Geoff Rehmet | ____ _ o /\ geoff@neptune.ru.ac.za |___ _-\_<, / /\/\ "finger -l rehmet@cs.ru.ac.za" for PGP key | (*)/'(*) /\/ / \ \
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?m0s5ozP-0000CpC>