[1073] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] Re: RESOLV_HOST_CONF

daemon@ATHENA.MIT.EDU (Joshua Cowan)
Mon Aug 26 07:23:01 1996

Date: Sun, 25 Aug 1996 21:42:45 -0500
From: Joshua Cowan <jcowan@jcowan.reslife.okstate.edu>
To: Daniel Bromberg <ddaniel@furlong.jpl.nasa.gov>
Cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <199608260046.RAA04384@furlong.jpl.nasa.gov>

>>>>> "DB" == Daniel Bromberg <ddaniel@furlong.jpl.nasa.gov> writes:

    DB> On and on we go with little hacks to plug all these holes...It

Ideally, the resolver library should be fixed.  Doing this securely and
retaining all of the original functionality will be tricky, and I'd
rather leave it up to the library maintainers.

Ultimately, this feature will probably either have to be limited
(abandoned in the case of setuid programs) or dropped altogether:
otherwise you end up with the library `fork'ing a process to read the
specified file with the real user's privileges.

    DB> seems to be a step needs to be taken back so we can look at a
    DB> fundamental problem with *all* setuid programs: they blithely

AFAIK, a POSIX.6 implementation for Linux is still being developed.
This is the best solution, IMHO (and this situation is a good example of
why POSIX.6 is a Good Thing).

    DB> take lots of environment variables from the user's environment
    DB> and just use them. But let's consider what setuid progams are

Most people are aware that setuid programs should never trust
environment variables.  The aspect that makes this situation relatively
unique is that the problem lies in the library using the environment,
not the program itself: setuid programs should do something like `envp =
0;' as a cautionary measure.

I agree that something has to be done to make privileged software easier
to manage, but, until the POSIX.6 stuff is ready, I suppose we just keep
patching....

-- 
Joshua Cowan  <jcowan@hermit.reslife.okstate.edu> _____________________
http://hermit.reslife.okstate.edu/~jcowan/       |  Comp Sci Student
"Very funny, Scotty.  Now beam down my clothes." | OSU - Stillwater, OK
PGP key available from any PGP keyserver or by fingering above address.

home help back first fref pref prev next nref lref last post