From owner-freebsd-hackers Sun Apr 1 19: 5:17 2001 Delivered-To: freebsd-hackers@freebsd.org Received: from dragon.nuxi.com (trang.nuxi.com [209.152.133.57]) by hub.freebsd.org (Postfix) with ESMTP id A850837B71C; Sun, 1 Apr 2001 19:05:15 -0700 (PDT) (envelope-from obrien@NUXI.com) Received: (from obrien@localhost) by dragon.nuxi.com (8.11.3/8.11.1) id f3224wF05173; Sun, 1 Apr 2001 19:04:58 -0700 (PDT) (envelope-from obrien) Date: Sun, 1 Apr 2001 19:04:58 -0700 From: "David O'Brien" To: Greg Black Cc: Robert Watson , Bill Moran , freebsd-hackers@FreeBSD.ORG Subject: Re: Security problems with access(2)? Message-ID: <20010401190458.A4991@dragon.nuxi.com> Reply-To: freebsd-hackers@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from gjb@gbch.net on Sun, Apr 01, 2001 at 10:55:23AM +1000 X-Operating-System: FreeBSD 5.0-CURRENT Organization: The NUXI BSD group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sun, Apr 01, 2001 at 10:55:23AM +1000, Greg Black wrote: > Many years ago I implemented a new interface that I called > eaccess() which replicated the work of access, but tested > against the effective uid and gid. I'd like to see that > introduced more widely. That still isn't suffient (and even more scary) unless the parameter is a file handle or FILE pointer. We need an faccess() call, plain and simple. -- -- David (obrien@FreeBSD.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message