Date: Wed, 15 Nov 1995 16:10:04 +1100 From: Bruce Evans <bde@zeta.org.au> To: davidg@Root.COM, peter@jhome.dialix.com Cc: ache@astral.msk.su, committers@freebsd.org, security@freebsd.org Subject: Re: cvs commit: CVSROOT log_accum.pl Message-ID: <199511150510.QAA19112@godzilla.zeta.org.au>
next in thread | raw e-mail | index | archive | help
>>IMHO, having a child process being able to modify the parent's >>environment goes against the unix religion^H^H^H^H^H^H^Hphilosophy of >>inherited privilege. > Which is why we should restrict it to the session leader. That would go against the religion that root can do anything :-). This problem is a bit like the one with RLIMIT_NPROC. It's bogus for the limit to be in the proc struct since that allows children to modify the parent's capability of spawning processes. Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199511150510.QAA19112>