non-superuser chown(2)s considered harmful
Neil Rickert
rickert at mp.cs.niu.edu
Tue Dec 11 01:37:16 AEST 1990
In article <2800:Dec1001:29:4890 at kramden.acf.nyu.edu> brnstnd at kramden.acf.nyu.edu (Dan Bernstein) writes:
>Exactly. This is why several people have been arguing for chown() to
>work between current and effective uids. Does chown() have any other
>reasonable use?
>
A great idea. Just look at the flexibility it will provide creators of
trojan horse programs.
--
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=
Neil W. Rickert, Computer Science <rickert at cs.niu.edu>
Northern Illinois Univ.
DeKalb, IL 60115. +1-815-753-6940
More information about the Comp.unix.internals
mailing list