Date: Wed, 15 Aug 2001 12:52:14 +1000 (EST) From: Bruce Evans <bde@zeta.org.au> To: Warner Losh <imp@harmony.village.org> Cc: Alexander Langer <alex@big.endian.de>, "Brian F. Feldman" <green@FreeBSD.org>, <cvs-committers@FreeBSD.org>, <cvs-all@FreeBSD.org> Subject: Re: cvs commit: src/sys/conf kmod.mk Message-ID: <20010815124728.S17438-100000@besplex.bde.org> In-Reply-To: <200108141854.f7EIsZW17483@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 14 Aug 2001, Warner Losh wrote: > In message <20010814205118.B22531@zerogravity.kawo2.rwth-aachen.d> Alexander Langer writes: > : > amazingly inconsistent... I can kldload ./file.ko, but not kldload file.ko, > : > though those are both correct relative paths. kldload(8) should have > : > absolutely no trouble checking the cwd for existence of a path before giving > : > up. Why don't we just replace that search algorithm with one less broken? > : > : This is a security issue. Yes. Part of the brokenness of the current algorithm is that it inconsistent to the point of insecurity. > This is the "don't have . in root's path" consequence. Not really. Root's affects shells, not syscalls. execve() looks up the pathname in the usual way, starting in the current directory if the pathname doesn't begin with a slash. Bruce To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010815124728.S17438-100000>