Date: Thu, 6 Feb 1997 09:48:03 +1100 (EDT) From: Darren Reed <avalon@coombs.anu.edu.au> To: tqbf@enteract.com Cc: freebsd-security@FreeBSD.ORG Subject: Re: While we're on the subject... Message-ID: <199702052248.OAA18949@freefall.freebsd.org> In-Reply-To: <199702052042.OAA27560@enteract.com> from "Thomas H. Ptacek" at Feb 5, 97 02:42:07 pm
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Thomas H. Ptacek, sie said: > > OpenBSD has the locale issue resolved reliably already. > > OpenBSD supports issetugid(). > > Thus, I can tell, even when I'm deep in libc, if I was called from an SUID > program. I can do that because execve() flipped a bit in my proc structure > when it noticed that I was SUID. > > This is a good thing. > > Meaningless UID checks probably aren't. Anything could have happened to my > creds, depending on the programmer calling the library, and I have no way > of determining what happened. > > What's holding FreeBSD up on supporting issetugid()? Has anyone done a send-pr to send it to freebsd ?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702052248.OAA18949>