> > Bug in the app then, not the kernel. If POSIX saved uid's are likely to be
> > a pain, then it's the app's responsibility to use setreuid() instead of
> > setuid(). Likewise for setregid().
>
> No, it's not a bug in zgv. The creators of zgv thought it will always be
> suid-root. And if euid=0, setuid() changes all his *uids to non-0 value,
> so application drops all his privileges.
Fine.
> But my patch makes it possible make zgv suid to other user than root (it
> makes system much securer). But then setuid doesn't drop all privileges
So you introduced a bug into zgv. Use setreuid() to drop privs not
setuid().
Cheers
Chris
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/