[1218] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] libc 5.4.7

daemon@ATHENA.MIT.EDU (David Holland)
Sun Oct 13 12:57:03 1996

From: David Holland <dholland@eecs.harvard.edu>
To: alan@lxorguk.ukuu.org.uk (Alan Cox)
Date: Wed, 9 Oct 1996 18:41:26 -0400 (EDT)
Cc: dholland@eecs.harvard.edu, alan@cymru.net, potato@dsnet.com,
        linux-gcc@vger.rutgers.edu, linux-security@tarsier.cv.nrao.edu
In-Reply-To: <m0vB6cw-0005FdC@lightning.swansea.linux.org.uk> from "Alan Cox" at Oct 9, 96 10:57:18 pm

 >>> Does this also drop the variables from programs run by a setuid program ?
 >> No. libc ignores the variables; it does not clear them.
 > 
 > So a setuid app that runs an app with uid set to the euid is still a walking
 > road accident. (like telnetd running login)

Yes. IMO, one should not do that (personally I wouldn't count on the
right thing happening with LD_*, much less any other environment
variables, rlimits, utmp entries, umasks, or what-have-you.)

-- 
   - David A. Holland             |    VINO project home page:
     dholland@eecs.harvard.edu    | http://www.eecs.harvard.edu/vino

home help back first fref pref prev next nref lref last post