Date: Thu, 15 Jul 2004 16:39:39 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: Pawel Jakub Dawidek <pjd@FreeBSD.org> Cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/kern kern_descrip.c Message-ID: <Pine.NEB.3.96L.1040715163859.67360E-100000@fledge.watson.org> In-Reply-To: <20040715173524.GG12007@darkness.comp.waw.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 15 Jul 2004, Pawel Jakub Dawidek wrote: > Thanks for clarification, but why actually do we care so much here about > real uid? Because many resource limits are relative to the real uid, not the effective uid. In particular, to prevent things like setuid apps (lpr, etc) from gaining the resources of root, and run instead with the resources of the user who ran the app. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Principal Research Scientist, McAfee Research
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1040715163859.67360E-100000>