Re: caps in elf, next itteration (the hack get's bigger)

Theodore Y. Ts'o (tytso@MIT.EDU)
Fri, 16 Apr 1999 15:13:44 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Marc Espie: "Re: Static Swap"
Previous message: Philip Blundell: "Re: Linux ping flood on localhost"
Next in thread: David L. Parsley: "Re: caps in elf, next itteration (the hack get's bigger)"
Reply: David L. Parsley: "Re: caps in elf, next itteration (the hack get's bigger)"

Date: Fri, 16 Apr 1999 11:44:35 -0400 (EDT)
From: "David L. Parsley (lkml account)" <kparse@salem.k12.va.us>

Ok, I agree completely with this; I don't see any good use for fE, it
really doesn't enhance security; if someone can explain to me why it
might, I'd be interested (Ted?)

fE is the rough equivalent of the setuid bit, except it's broken out by
capabilities. You still need it, because a non-privileged user may need
to execute a binary which has some privileges, but which does its own
access controls and authorization checks before doing some privileged
operation on behalf of the user. So fE is still absolutely needed.
Most of the programs which are setuid root today would have some kind of
non-zero fE mask.

- Ted

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Marc Espie: "Re: Static Swap"
Previous message: Philip Blundell: "Re: Linux ping flood on localhost"
Next in thread: David L. Parsley: "Re: caps in elf, next itteration (the hack get's bigger)"
Reply: David L. Parsley: "Re: caps in elf, next itteration (the hack get's bigger)"