Re: capabilities in elf headers, (my) final (and shortest) iteration

Alan Curry (pacman-kernel@cqc.com)
Thu, 15 Apr 1999 13:41:54 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Russell Steffen: "Compile problem w/2.2.5-ac7"
Previous message: Horst von Brand: "Re: [PATCH] Capabilities, this time in elf section"

Riley Williams writes the following:
>
> > ...and works only for some types of files (how about a webserver
> > written in Perl?).
>
>That's up to the PERL interpreter to handle, not the kernel. After
>all, the kernel ignores s[gu]id on scripts already, and the only
>reason s[gu]id works on PERL scripts is because the PERL interpreter
>handles the relevant capabilities if it sees the s[gu]id flag set on
>the script it's running.

Just where do you think the perl interpreter is going to look to decide what
capabilities to enable? suidperl just stats the script and looks at the
setuid bits to decide what to do. If the capability bits are not in the fs,
where will suidcapperl find them? There ain't no ELF header in a script.

Not that I really care one way or the other about capabilities, just
wondering if anyone has really thought this through before posting "it's up
to the interpreter"

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Russell Steffen: "Compile problem w/2.2.5-ac7"
Previous message: Horst von Brand: "Re: [PATCH] Capabilities, this time in elf section"