Re: svn commit: r211393 - head/lib/libutil

[ Available lists | Index of svn-src-all | Month of Aug 2010 | Week of 20 Aug 2010 | Raw email | View thread | Wrap long lines | Reply | Tag ]
From
M. Warner Losh <imp@bsdimp.com>
Date
20 Aug 2010 18:41:09
Subject
Re: svn commit: r211393 - head/lib/libutil
Message-ID
20100820.123742.600640546137300360.imp@bsdimp.com

In reply to
Dag-Erling Smørgrav (svn-src-head) , Dag-Erling Smørgrav
References to
Dag-Erling Smørgrav (svn-src-head) , Dag-Erling Smørgrav, Attilio Rao (svn-src-head) , Attilio Rao, Dag-Erling Smørgrav (svn-src-head) , Dag-Erling Smørgrav
Referenced by
Dag-Erling Smørgrav (svn-src-head) , Dag-Erling Smørgrav, M. Warner Losh (svn-src-head) , M. Warner Losh, Dag-Erling Smørgrav, Dag-Erling Smørgrav (svn-src-head)

[ Hide this part ] 
In message: <861v9ty7bg.fsf@ds4.des.no>
            Dag-Erling Smrgrav <des@des.no> writes:
: Attilio Rao <attilio@freebsd.org> writes:
: > Dag-Erling Smrgrav <des@des.no> writes:
: > > Perhaps the test in setusercontext() should be changed to use
: > > geteuid() instead of getuid().
: > Yes, I think that it probabilly makes more sense (geteuid() testing in
: > setusercontext()).
:
: What if the user's ~/.login_conf sets a custom PATH, and the application
: switches back to root privs and fork()-exec()s some other program?
 
And we're back to the reason for why issetugid() :)
 
Warner
Elapsed time: 0.080 seconds