[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: exec and EXECSERVERS

From: Paul Jarc
Subject: Re: exec and EXECSERVERS
Date: Fri, 20 Dec 2002 14:09:52 -0500
User-agent: Gnus/5.090008 (Oort Gnus v0.08) Emacs/21.2 (i686-pc-linux-gnu)

tb@becket.net (Thomas Bushnell, BSG) wrote:
> We don't want to change other execs, because there is no reason to
> think there is any kind of security implication for them.

Why not?  Doesn't ruid!=euid have the same implications as in Unix?
(I.e., that a setuid program was executed, and no code since then has
destroyed that information.)

In Unix, if I run setuid program foo, and foo runs program bar, then
the dynamic loader, noticing that ruid!=euid, will ignore LD_PRELOAD,
etc., when loading bar.  (Right?)  This is because LD_PRELOAD is under
the control of a user different from the one whose privileges we have
now.  Isn't the same true for the Hurd?

As I said, I really don't know the Hurd, so this is just out of


reply via email to

[Prev in Thread] Current Thread [Next in Thread]