From owner-freebsd-hackers  Tue Feb 18 21:19:38 1997
Return-Path: <owner-hackers>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id VAA03256
          for hackers-outgoing; Tue, 18 Feb 1997 21:19:38 -0800 (PST)
Received: from mail.calweb.com (mail.calweb.com [208.131.56.11])
          by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA03240
          for <freebsd-hackers@freebsd.org>; Tue, 18 Feb 1997 21:19:33 -0800 (PST)
Received: from hell.gigo.com (jfesler@hell.gigo.com [207.173.133.59])
	by mail.calweb.com (8.8.5/8.8.5) with SMTP id VAA02100;
	Tue, 18 Feb 1997 21:17:39 -0800 (PST)
Message-Id: <3.0.1.32.19970218211815.006f4378@pop.calweb.com>
X-Sender: jfesler@pop.calweb.com
X-Mailer: Windows Eudora Pro Version 3.0.1 (32)
Date: Tue, 18 Feb 1997 21:18:15 -0800
To: dg@root.com
From: Jason Fesler <jfesler@calweb.com>
Subject: Re: Core dumps in suid processes (again) 
Cc: freebsd-hackers@freebsd.org, gnat@frii.com
In-Reply-To: <199702190347.TAA09888@root.com>
References: <Your message of "Wed, 19 Feb 1997 14:05:00 +1100."             <Pine.BSF.3.91.970219135715.8268Y-100000@panda.hilink.com.au>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

At 07:47 PM 2/18/97 -0800, David Greenman wrote:
>   The answer is yes, FreeBSD remembers that it was once setuid. It
>intentionally forgets after an exec, however, which clears the address
>space so the sensitive data is wiped. It's been proposed that FreeBSD
>should remember across the exec if uid != ruid, too, and I think this
>is probably a good idea. See PR# 2757.

Thanks for your comments, David. :-)

( /me passes the caffeine-ladden carbonated liquied unit to DG )