[CONTACT]

[ABOUT]

[POLICY]

[ADVERTISE]

Aucbvax.fa.wizardsutzoo!decvax!

Found at: gopher.quux.org:70/Archives/usenet-a-news/FA.unix-wizards/81.09.05_ucbvax.2957_fa.unix-wizards.txt

Aucbvax.2957
fa.unix-wizards
utzoo!decvax!ucbvax!unix-wizards
Sat Sep  5 14:23:59 1981
setuid ignored for root
>From chico!esquire!psl@Berkeley Sat Sep  5 14:13:31 1981
It sounds like we're all agreed that it's an ugly, sometimes dangerous
hack.  The reason I brought it up originally was to find out if anyone
knew of a case where its removal would cause trouble.  So far no one has
mentioned such but I sense the same lurking fear in many of the responses.
Brian Lucas has finally talked Interactive Systems into making a mod in their
systems (for unrelated reasons) which makes the permissions associated with
a process be the union on the permissions held by the effective and real
uids.  This change certainly sounds reasonable and if no one can find a
hidden pitfall would be the perfect companion to the removal of the ignored
setuid for root processes...
Pitfalls?
-----------------------------------------------------------------
 gopher://quux.org/ conversion by John Goerzen <jgoerzen@complete.org>
 of http://communication.ucsd.edu/A-News/
This Usenet Oldnews Archive
article may be copied and distributed freely, provided:
1. There is no money collected for the text(s) of the articles.
2. The following notice remains appended to each copy:
The Usenet Oldnews Archive: Compilation Copyright (C) 1981, 1996 
 Bruce Jones, Henry Spencer, David Wiseman.


AD:

NEW PAGES:

[ODDNUGGET]

[GOPHER]