UI: sudo-1.6.4rc*: set_perms_posix introduces new problems

Dmitry V. Levin ldv at alt-linux.org
Sun Jan 13 06:51:50 EST 2002


Upcoming sudo-1.6.4 introduces new set_perms implementation,
set_perms_posix. However use of this function have a drawback: most of the
time sudo is running with real uid of the caller, which allows user to
manipulate sudo process with signals. For example, send_mail function can
be terminated by user which is nogood. Another drawback is that sendmail
program gets executed suid which is also nogood (postfix doesn't like it).

set_perms_fallback with setreuid is still ok, because of PERM_ROOT does

I'd like to see sudo-1.6.4 release with set_perms_posix either fixed or
disabled by default.


Dmitry V. Levin     mailto://ldv@fandra.org
ALT Linux Team      http://altlinux.ru
Fandra Project      http://www.fandra.org
UNIX is user friendly. It's just very selective about who its friends are.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL: </pipermail/sudo-workers/attachments/20020113/2d94523e/attachment.bin>

More information about the sudo-workers mailing list