Re: Setuid

To: mail.inka.de!lina!lina.inka.de!lists (Bernd Eckenfels)
Cc: debian-devel-owner-lists=lina.inka.de@lists.debian.org, bcwhite@verisim.com, debian-devel@lists.debian.org
Subject: Re: Setuid
From: joost@rulcmc.leidenuniv.nl (joost witteveen)
Date: Mon, 18 Nov 1996 19:37:08 +0100 (MET)
Message-id: <m0vPYZA-000163C@rulcmc.leidenuniv.nl>
In-reply-to: <m0vOUEs-0004izC@lina> from "Bernd Eckenfels" at Nov 15, 96 08:47:44 pm

> 
> Hi,
> 
> > > This same thing applied to all packages linked against svgalib, including
> > > ghostscript.
> > 
> > What I've done with gs is make it _not_ setuid by default.
> 
> svgalib drops SU privileges after init. You only should veryfy, that the
> init functio is the first thing called in the application and you are rather
> safe.

I tried to do that, but the problem is that, if I put the svga_init()
call in gs (as opposed to the wrapper), I don't really know when
gs decides that it is going to output to the VC.

And, if I put the svga_init() call as the first thing in main(), 
gs will _always_ say
  Using some svgalib driver
This looks confusing, if gs draws on my X screen.

The other option, making the wrapper setuid root, looked even less
attractive to me: Althought the wrapper knows what device gs wants
to use, I alreadly had one bug in my wrapper (buffer overrun), and
I am quite glad it wasn't setuid then.

-- 
joost witteveen
            joost@rulcmc.leidenuniv.nl
          joostje@debian.org
--
Use Debian/GNU Linux!

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com

Reply to:

Follow-Ups:
- Re: Setuid
  - From: Tom Lees <tom@lpsg.demon.co.uk>

References:
- Re: Setuid
  - From: "Bernd Eckenfels" <mail.inka.de!lina!lina.inka.de!lists>

Prev by Date: Re: Compress in Debian.
Next by Date: Re: Passwd/Group changes proposal v1
Previous by thread: Re: Setuid
Next by thread: Re: Setuid
Index(es):
- Date
- Thread