Date: Sat, 2 Sep 2000 15:12:21 -0700 (PDT) From: Kris Kennaway <kris@FreeBSD.org> To: Peter Wemm <peter@netplex.com.au> Cc: Poul-Henning Kamp <phk@critter.freebsd.dk>, Brian Somers <brian@Awfulhak.org>, "Jacques A. Vidrine" <n@nectar.com>, Dan Nelson <dnelson@emsphone.com>, sthaug@nethelp.no, ume@FreeBSD.ORG, arch@FreeBSD.ORG Subject: Re: setuid ssh should die (Re: Request for review: nsswitch) Message-ID: <Pine.BSF.4.21.0009021511510.83163-100000@freefall.freebsd.org> In-Reply-To: <200009022207.e82M78G32995@netplex.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 2 Sep 2000, Peter Wemm wrote:
> Perhaps we can add a clearsetugid() syscall that apps can call when they
> are prepared to guarantee that things like libc getpwent() don't have a
> cached copy of the priviliged master.passwd in memory that a coredump might
> otherwise expose or ptrace() could extract.
Yes, I'd be against this on these grounds.
Kris
--
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <forsythe@alum.mit.edu>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0009021511510.83163-100000>