UI: sudo-1.6.4rc*: set_perms_posix introduces new problems
Dmitry V. Levin
ldv at alt-linux.org
Sun Jan 13 06:51:50 EST 2002
Greetings!
Upcoming sudo-1.6.4 introduces new set_perms implementation,
set_perms_posix. However use of this function have a drawback: most of the
time sudo is running with real uid of the caller, which allows user to
manipulate sudo process with signals. For example, send_mail function can
be terminated by user which is nogood. Another drawback is that sendmail
program gets executed suid which is also nogood (postfix doesn't like it).
set_perms_fallback with setreuid is still ok, because of PERM_ROOT does
setuid(0).
I'd like to see sudo-1.6.4 release with set_perms_posix either fixed or
disabled by default.
Regards,
Dmitry
+-------------------------------------------------------------------------+
Dmitry V. Levin mailto://ldv@fandra.org
ALT Linux Team http://altlinux.ru
Fandra Project http://www.fandra.org
+-------------------------------------------------------------------------+
UNIX is user friendly. It's just very selective about who its friends are.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL: </pipermail/sudo-workers/attachments/20020113/2d94523e/attachment.bin>
More information about the sudo-workers
mailing list