Re: RFC/PATCH: Random pid generation

Krzysztof Halasa (khc@intrepid.pm.waw.pl)
13 Jan 2000 01:03:25 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David S. Miller: "Re: Regarding slab.c"
Previous message: Frank Bernard: "Re: wireless LAN question [off topic, maybe?]"
In reply to: Sean Hunter: "Re: RFC/PATCH: Random pid generation"

"Sean Hunter" <sean@uncarved.co.uk> writes:

> You run your program, but I have created a simlink in /tmp with the
> same name (because the name is guessable).

It is independent of PIDs being guessable or not. With really random
PIDs you can still create link(s) in /tmp and after some number of tries
you can win the race (especially when you can execute the suid program
in question yourself).

32 bits would be some help here, but that doesn't fixes the problem,
only makes you wait longer.

-- Krzysztof Halasa Network Administrator

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: David S. Miller: "Re: Regarding slab.c"
Previous message: Frank Bernard: "Re: wireless LAN question [off topic, maybe?]"
In reply to: Sean Hunter: "Re: RFC/PATCH: Random pid generation"