No subject


Fri Feb 17 00:57:05 UTC 2012


     The setuid() function sets the real and effective user IDs and the saved
     set-user-ID of the current process to the specified value.  The setuid()
     function is permitted if the specified ID is equal to the real user ID of
     the process, or if the effective user ID is that of the super user.

The NetBSD implementation doesn't consider setuid(geteuid()) (useful) at
all. It allows setuid(*) for the super user and setuid(getuid()) for
other users.

> If it only allows it for non-root users, that isn't going to work very
> well...

That's not what I said.

	Kind regards

-- 
Matthias Scheler                                  http://scheler.de/~matthias/


More information about the inn-bugs mailing list