From owner-freebsd-bugs Thu May 4 5:30: 6 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 50B5237BE8C for ; Thu, 4 May 2000 05:30:03 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.9.3/8.9.2) id FAA90671; Thu, 4 May 2000 05:30:03 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Date: Thu, 4 May 2000 05:30:03 -0700 (PDT) Message-Id: <200005041230.FAA90671@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: David Malone Subject: Re: kern/18358: /proc process directories don't have a "file" entry Reply-To: David Malone Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR kern/18358; it has been noted by GNATS. From: David Malone To: freebsd-gnats-submit@FreeBSD.org, ji@research.att.com Cc: green@FreeBSD.org Subject: Re: kern/18358: /proc process directories don't have a "file" entry Date: Thu, 04 May 2000 13:28:04 +0100 The implimentation of /proc/file was found to be a security problem, as it exposed suid binaries to the world, which might not otherwise have been visable. This has been replaced in 5.0 (I think by Brian Feldman?) with a implimentation more like the one used in Linux, which uses a symlink to the binary and so doesn't expose suid binaries. I guess this will be backported to 4.X before 4.1 will be released. Maybe this PR could be given to Brian to remind him to MFC when the code is ready? David. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message