[2834] in Kerberos-V5-bugs
Re: krb5-libs/505: patch to make krb5 consistently use one set-effective-uid function
daemon@ATHENA.MIT.EDU (Theodore Y. Ts'o)
Thu Dec 4 21:15:49 1997
Date: Thu, 4 Dec 1997 21:14:39 -0500
From: "Theodore Y. Ts'o" <tytso@MIT.EDU>
To: Evan Champion <evanc@synapse.net>
Cc: "Theodore Y. Ts'o" <tytso@MIT.EDU>, krb5-bugs@MIT.EDU,
gnats-admin@RT-11.MIT.EDU, krb5-prs@RT-11.MIT.EDU
In-Reply-To: Evan Champion's message of Thu, 4 Dec 1997 18:29:34 -0500 (EST),
<Pine.BSF.3.96.971204182831.738H-100000@cello.synapse.net>
Date: Thu, 4 Dec 1997 18:29:34 -0500 (EST)
From: Evan Champion <evanc@synapse.net>
On Thu, 4 Dec 1997, Theodore Y. Ts'o wrote:
> And you're telling us that BSD/OS has gratuitously broken this? I'd
> submit a bug report to BSDI.....
Most of the 4.4BSDs didn't work with the set* functions, or at least not
in a way that other programs expected them to work. FreeBSD fixed most of
theirs; it seems that BSDI still hasn't fixed setreuid().
Many commercial operating systems are based on BSD 4.2 and BSD 4.3, and
setreuid() is the "least common denominator interface". For CSRG to
remove setreuid() (as I am told they did) was (a) arrogant, and (b)
stupid. For BSDI to put it back, and but implement it incorrectly, is
even worse....
I'd call this a BSD/OS bug, and BSDI should fix it.
- Ted
