>These programs should probably do a setuid() instead, which affects >saved-user-id as well. > >This problem isn't huge, you might say, because whenever you do a >fork() or similar, the saved-user-id should be reset. But if you can >take control of the application via a buffer overflow or the like, and >saved-user-id is root then you have no problem of getting the root >priviledges back before doing a fork(). ' fork() does not affect uids at all. exec* does. Note that both setuid(uid) (as root) and setreuid(uid,uid) should get rid of the saved uid. Casper
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:41:46 PDT