Cuserid sometimes gives incorrect info!
xtdn at levels.sait.edu.au
xtdn at levels.sait.edu.au
Sat Mar 23 02:19:10 AEST 1991
russell at ccu1.aukuni.ac.nz (Russell J Fulton;ccc032u) writes:
> It is a nasty security loop hole for the unwary. We had a setuid program
> which used cuserid to check identity of the person running the program
cuserid does not return the calling user's identity; rather it returns the
login name, as recorded in utmp, of the user logged in to the terminal
that is the caller's stdin, stdout and/or stderr. Or to put this more
clearly:
return-cuserid < /dev/console >/dev/console 2>/dev/console
will return the login id of whoever is logged in on /dev/console.
Using cuserid to verify the identity of the caller is a security hole
that just begs to be exploited. Used in conjunction with getuid, it
can be useful.
David Newall, who no longer works Phone: +61 8 344 2008
for SA Institute of Technology E-mail: xtdn at lux.sait.edu.au
"Life is uncertain: Eat dessert first"
More information about the Comp.unix.internals
mailing list