From owner-cvs-sys  Mon Feb 17 02:58:08 1997
Return-Path: <owner-cvs-sys>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id CAA08197
          for cvs-sys-outgoing; Mon, 17 Feb 1997 02:58:08 -0800 (PST)
Received: (from davidg@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id CAA08190;
          Mon, 17 Feb 1997 02:58:06 -0800 (PST)
Date: Mon, 17 Feb 1997 02:58:06 -0800 (PST)
From: David Greenman <davidg>
Message-Id: <199702171058.CAA08190@freefall.freebsd.org>
To: CVS-committers, cvs-all, cvs-sys
Subject: cvs commit:  src/sys/kern kern_fork.c
Sender: owner-cvs-sys@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

davidg      97/02/17 02:58:05

  Branch:      sys/kern  RELENG_2_1_0
  Modified:    sys/kern  kern_fork.c
  Log:
  Pass P_SUGID on to the child of a fork(). It was possible to get rlogin
  to coredump previously since it (somewhat uniquely) is setuid and forks
  without execing, and thus without passing P_SUGID the child could
  coredump and possibly divulge sensitive information (such as encrypted
  passwords from the passwd database).
  
  Revision  Changes    Path
  1.12.4.3  +5 -1      src/sys/kern/kern_fork.c