diff options
| author | peter <peter@FreeBSD.org> | 1997-03-31 15:13:33 +0000 |
|---|---|---|
| committer | peter <peter@FreeBSD.org> | 1997-03-31 15:13:33 +0000 |
| commit | a67a7fef66afd2908c026ada6b68da9cddaeb48e (patch) | |
| tree | fd1a89cacbbf26c14f7762f9d1d9c7f56918d349 /lib/libc | |
| parent | db3b5e918097f96d157f1b583a6b54c7b6ac53d9 (diff) | |
| download | FreeBSD-src-a67a7fef66afd2908c026ada6b68da9cddaeb48e.zip FreeBSD-src-a67a7fef66afd2908c026ada6b68da9cddaeb48e.tar.gz | |
Implement code for an OpenBSD-style issetuigid().
This is valueable for library code which needs to be able to find out
whether the current process is or *was* set[ug]id at some point in the
past, and may have a "tainted" execution environment. This is especially
a problem with the trend to immediately revoke privs at startup and regain
them for critical sections. One problem with this is that if a cracker
is able to compromise the program while it's still got a saved id, the
cracker can direct the program to regain the privs. Another problem is
that the user may be able to affect the program in some other way (eg:
setting resolver host aliases) and the library code needs to know when it
should disable these sorts of features.
Reviewed by: ache
Inspired by: OpenBSD (but with a different implementation)
Diffstat (limited to 'lib/libc')
0 files changed, 0 insertions, 0 deletions
