Use setuid/seteuid around dangerous operations. Also a few buffer

overflow patches that were "near" to where these operations are taking place. The buffer overflows are from OpenBSD. The setuid/seteuid patches are from NetBSD by way of OpenBSD (they changed them a little), at least from my read of the tree. This is the first of a series of OpenBSD lpr/et al merges. It (and them) should be merged back into 2.2 and/or 2.1 (if requested) branches when they have been shaken out in -current. Obtained from: OpenBSD
author: imp <imp@FreeBSD.org> 1997-07-23 00:49:46 +0000
committer: imp <imp@FreeBSD.org> 1997-07-23 00:49:46 +0000
commit: f080009db57e6a7b246a2ab15d8a73e4563931b4 (patch)
tree: 3f6c130b47ee18671302ddcfcae8cef66be97455 /usr.sbin/lpr/lpq
parent: 5d2b7fa5ede6cefc6d4c6f7df3987bea7b9149b8 (diff)
download: FreeBSD-src-f080009db57e6a7b246a2ab15d8a73e4563931b4.zip
FreeBSD-src-f080009db57e6a7b246a2ab15d8a73e4563931b4.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/usr.sbin/lpr/lpq/lpq.c b/usr.sbin/lpr/lpq/lpq.c
index 0e3ec33..56705bc 100644
--- a/usr.sbin/lpr/lpq/lpq.c
+++ b/usr.sbin/lpr/lpq/lpq.c
@@ -69,6 +69,8 @@ int	 requests;		/* # of spool requests */
 char	*user[MAXUSERS];	/* users to process */
 int	 users;			/* # of users in user array */
 
+uid_t	uid, euid;
+
 static int ckqueue __P((char *));
 void usage __P((void));
 
@@ -82,6 +84,9 @@ main(argc, argv)
 	int	ch, aflag, lflag;
 	char	*buf, *cp;
 
+	euid = geteuid();
+	uid = getuid();
+	seteuid(uid);
 	name = *argv;
 	if (gethostname(host, sizeof(host))) {
 		perror("lpq: gethostname");
author	imp <imp@FreeBSD.org>	1997-07-23 00:49:46 +0000
committer	imp <imp@FreeBSD.org>	1997-07-23 00:49:46 +0000
commit	f080009db57e6a7b246a2ab15d8a73e4563931b4 (patch)
tree	3f6c130b47ee18671302ddcfcae8cef66be97455 /usr.sbin/lpr/lpq
parent	5d2b7fa5ede6cefc6d4c6f7df3987bea7b9149b8 (diff)
download	FreeBSD-src-f080009db57e6a7b246a2ab15d8a73e4563931b4.zip FreeBSD-src-f080009db57e6a7b246a2ab15d8a73e4563931b4.tar.gz