Re: PATCH] Allow setuid/setgid core files

From: Neil A. Wilson (nawilson@nawilson.com)
Date: Sun Apr 21 2002 - 09:10:19 EST

Next message: Eric W. Biederman: "Re: possible GPL violation involving linux kernel code"
Previous message: Dennis Stout: "hostility"
In reply to: Willy Tarreau: "Re: PATCH] Allow setuid/setgid core files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2002-04-21 at 03:24, Willy Tarreau wrote:
> BTW, what uid/gid will the core get ? I think that it should get
> the highest level so that if someone breaks in through a service
> which uses this feature and which has dropped its uid/gid, at
> least he cannot read eventual cores from previous attempts.
> Comments ?
>

Thanks for the feedback. You bring up a good point here. Currently the
dump is owned by the effective uid. I'll look into writing it as root.

Neil

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Eric W. Biederman: "Re: possible GPL violation involving linux kernel code"
Previous message: Dennis Stout: "hostility"
In reply to: Willy Tarreau: "Re: PATCH] Allow setuid/setgid core files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue Apr 23 2002 - 22:00:28 EST