Date: Tue, 14 Nov 1995 06:34:35 -0800 From: David Greenman <davidg@Root.COM> To: Peter Wemm <peter@jhome.dialix.com> Cc: ache@astral.msk.su, committers@freebsd.org, security@freebsd.org Subject: Re: cvs commit: CVSROOT log_accum.pl Message-ID: <199511141434.GAA00395@corbin.Root.COM> In-Reply-To: Your message of "Tue, 14 Nov 95 22:21:56 %2B0800." <Pine.BSF.3.91.951114220712.4688H-100000@jhome.DIALix.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
>I still think we should move the login name to the "struct ucred" - then >the possibility of the entire session being accidently changed would no >longer be an issue. struct ucred is normally 76 bytes long now. Another >12 bytes wouldn't hurt all that much... (especially since another >transient data structure would shrink as a result to partly offset the cost). I think it needs to stay as part of the process group struct. It doesn't any sense from an architectural perspective to put it in the cred struct. >IMHO, having a child process being able to modify the parent's >environment goes against the unix religion^H^H^H^H^H^H^Hphilosophy of >inherited privilege. Which is why we should restrict it to the session leader. -DG
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199511141434.GAA00395>