[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: exec and EXECSERVERS

From: Thomas Bushnell, BSG
Subject: Re: exec and EXECSERVERS
Date: 20 Dec 2002 16:20:26 -0800
User-agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.2

Roland McGrath <roland@gnu.org> writes:

> > I thought there was some special Linux widget in the dynamic loader
> > that we don't support.  Maybe that's just long gone.
> You are thinking of ld.so.cache.

Yes, that's right.

> > Anyhow, the point is a good one with respect to environment variables,
> > and perhaps we should enable EXECSERVERS with the suggested tweak,
> > that it is off for secure exec and for euid!=ruid.
> EXECSERVERS has to be excised from the environment, not just ignored.

Why is that?  If it's programs that call setuid(getuid()) that have
this responsibility (as the original poster suggested), then this is
just fine.  On the other hand, my vote is that it's the setuid program
itself that always has the responsibility.  


reply via email to

[Prev in Thread] Current Thread [Next in Thread]