Aucbvax.2957 fa.unix-wizards utzoo!decvax!ucbvax!unix-wizards Sat Sep 5 14:23:59 1981 setuid ignored for root >From chico!esquire!psl@Berkeley Sat Sep 5 14:13:31 1981 It sounds like we're all agreed that it's an ugly, sometimes dangerous hack. The reason I brought it up originally was to find out if anyone knew of a case where its removal would cause trouble. So far no one has mentioned such but I sense the same lurking fear in many of the responses. Brian Lucas has finally talked Interactive Systems into making a mod in their systems (for unrelated reasons) which makes the permissions associated with a process be the union on the permissions held by the effective and real uids. This change certainly sounds reasonable and if no one can find a hidden pitfall would be the perfect companion to the removal of the ignored setuid for root processes... Pitfalls? ----------------------------------------------------------------- gopher://quux.org/ conversion by John Goerzen of http://communication.ucsd.edu/A-News/ This Usenet Oldnews Archive article may be copied and distributed freely, provided: 1. There is no money collected for the text(s) of the articles. 2. The following notice remains appended to each copy: The Usenet Oldnews Archive: Compilation Copyright (C) 1981, 1996 Bruce Jones, Henry Spencer, David Wiseman.