Date: Wed, 5 Feb 1997 16:24:30 -0600 (CST) From: Karl Denninger <karl@Mcs.Net> To: dg@root.com Cc: karl@Mcs.Net, tqbf@enteract.com, freebsd-security@freebsd.org Subject: Re: While we're on the subject... Message-ID: <199702052224.QAA16588@Jupiter.Mcs.Net> In-Reply-To: <199702052223.OAA11687@root.com> from "David Greenman" at Feb 5, 97 02:23:09 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> > >> What's holding FreeBSD up on supporting issetugid()? > >> > >> ---------------- > >> Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf@enteract.com] > >> ---------------- > >> "I'm standing alone, I'm watching you all, I'm seeing you sinking." > > > >If euid != uid, then you're running SUID *NOW*. > >If euid = 0, then you're running as root *NOW*. > > > >Why does it matter what you might have been sometime before? The issue is > >what you are running as at the time the call is made, no? > > Programs that were once privileged might have read sensitive information > into memory which could possibly be read out if some hole were exploited. > > -DG > > David Greenman > Core-team/Principal Architect, The FreeBSD Project Sure, but you can't fix that without a flag in the process structure. -- -- Karl Denninger (karl@MCS.Net)| MCSNet - The Finest Internet Connectivity http://www.mcs.net/~karl | T1's from $600 monthly to FULL DS-3 Service | 99 Analog numbers, 77 ISDN, Web servers $75/mo Voice: [+1 312 803-MCS1 x219]| Email to "info@mcs.net" WWW: http://www.mcs.net/ Fax: [+1 773 248-9865] | 2 FULL DS-3 Internet links; 400Mbps B/W Internal
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702052224.QAA16588>