Aucbvax.3000
fa.unix-wizards
utzoo!decvax!ucbvax!unix-wizards
Tue Sep  8 06:29:23 1981
setuid ignored for root
>From decvax!duke!unc!smb@Berkeley Tue Sep  8 06:24:47 1981
In-real-life: Steven M. Bellovin
Location: University of North Carolina at Chapel Hill

I think that the Interactive Systems scheme won't work particularly
well.  If, say, root -- the real root -- invokes a spooling daemon, the
"standard" lock-file mechanism (creating the sucker mode 444) won't work,
as root has the permission to overwrite it, regardless of what it's setuid
to.  Nor does it really solve the problem of creating files on behalf
of the real user -- who should own them?  I suspect that the "schizo" call,
which flips the real and effective uids, is a better hack than granting
the union of all permissions.

-----------------------------------------------------------------
gopher://quux.org/ conversion by John Goerzen <[email protected]>
of http://communication.ucsd.edu/A-News/


This Usenet Oldnews Archive
article may be copied and distributed freely, provided:

1. There is no money collected for the text(s) of the articles.

2. The following notice remains appended to each copy:

The Usenet Oldnews Archive: Compilation Copyright (C) 1981, 1996
Bruce Jones, Henry Spencer, David Wiseman.

You are viewing proxied material from gopher.quux.org. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.