From owner-freebsd-hackers Wed Jun 18 10:21:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA28462 for hackers-outgoing; Wed, 18 Jun 1997 10:21:39 -0700 (PDT) Received: from phaeton.artisoft.com (phaeton.Artisoft.COM [198.17.250.50]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA28457 for ; Wed, 18 Jun 1997 10:21:35 -0700 (PDT) Received: (from terry@localhost) by phaeton.artisoft.com (8.6.11/8.6.9) id KAA20993; Wed, 18 Jun 1997 10:12:21 -0700 From: Terry Lambert Message-Id: <199706181712.KAA20993@phaeton.artisoft.com> Subject: Re: hackers-digest V3 #242 To: ada@not-enough.bandwidth.org (Ada T Lim) Date: Wed, 18 Jun 1997 10:12:21 -0700 (MST) Cc: hackers@FreeBSD.ORG In-Reply-To: <199706180623.QAA03038@polya.blah.org> from "Ada T Lim" at Jun 18, 97 04:23:10 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Anyhow, what would be a good way to implement 'setuid libraries'? (The idea > being that all function calls to this library have an implicit setuid(0) first > and a setuid() back afterwards. You mean "installed images". Generally a "system" priviledge level jammed in between "user" and "kernel". On an Intel, this probably means "ring 1" (kernel is "ring 0" and user is "ring 3"). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.