Date: Thu, 18 Apr 2002 23:16:45 -0400 From: Garance A Drosihn <drosih@rpi.edu> To: Garrett Wollman <wollman@lcs.mit.edu>, Jacques Vidrine <nectar@FreeBSD.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/kern kern_descrip.c kern_exec.c src/sys/sys filedesc.h Message-ID: <p05111709b8e53bfd88f7@[128.113.24.47]> In-Reply-To: <200204190309.g3J39tE69057@khavrinen.lcs.mit.edu> References: <200204190045.g3J0jUY59526@freefall.freebsd.org> <200204190309.g3J39tE69057@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:09 PM -0400 4/18/02, Garrett Wollman wrote: ><<On Thu, 18 Apr 2002 17:45:30 -0700 (PDT), Jacques Vidrine ><nectar@FreeBSD.org> said: > > > When exec'ing a set[ug]id program, make sure that the stdio > > file descriptors (0, 1, 2) are allocated by opening /dev/null > > for any which are not already open. > ><>shudder<> > >This seems completely and utterly broken to me. I don't see how it would break anything, although I'm not sure why this is something that needs to be done for set[ug]id programs and not for others? Is this trying to avoid error conditions that would pull the rug out from under such a program "at a bad time"? Just wondering... -- Garance Alistair Drosehn = gad@eclipse.acs.rpi.edu Senior Systems Programmer or gad@freebsd.org Rensselaer Polytechnic Institute or drosih@rpi.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?p05111709b8e53bfd88f7>