From owner-cvs-all Wed Jul 19 22:12:16 2000 Delivered-To: cvs-all@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 34D4C37BC11; Wed, 19 Jul 2000 22:12:07 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id WAA69685; Wed, 19 Jul 2000 22:12:07 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Wed, 19 Jul 2000 22:12:07 -0700 (PDT) From: Kris Kennaway To: Marcel Moolenaar Cc: Robert Watson , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org, security-officer@FreeBSD.org Subject: Re: cvs commit: src/sys/i386/linux linux_dummy.c linux_misc.c In-Reply-To: <39768878.3D899AC@cup.hp.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, 19 Jul 2000, Marcel Moolenaar wrote: > > If the answer to either of these questions is no, I'd like to see this > > backed out before the release. > > If there's a shift in how we treat Linuxulator security issues, I'd like > it to be discussed first. If any of the security officers decides after > looking at the code that the implementation is too dangerous, I'll back > it out. It worries me: as I understand it, the current implementation will always say it suceeds (but in fact does nothing) when someone asks "please change my f[ug]id" (even someone without privileges, but I don't think that's so important from a security PoV). So a Linux application running as root has no way to know that it is STILL writing files out as root, and not the reduced-privileges user it wanted to. If this is indeed the case then I'd like it backed out until we can emulate the behaviour more appropriately. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message