Re: [RFC] new kernel syscall

Alan Curry (pacman-kernel@cqc.com)
Wed, 21 Jul 1999 12:31:47 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David Hinds: "Re: New kernel/resource.c"
Previous message: Mike Frisch: "Re: NCR810 problems on 2.2.10-ac10"

Pavel Machek writes the following:
>
>> I want to make a new kernel syscall. Obviously, before doing the (trivial)
>> work, I want to check it is considered a good idea.
>
>Yes, please. This was one of major reasons elfcap patch became a bit
>ugly. We'll need that few months before we can put capabilities into
>mainstream use.
>
>> Comments please? A worthy 2.3 item?

A program with --x--x--x permissions can be read by anyone wielding
LD_PRELOAD, because ldso can't get an accurate dumpable reading so it has to
guess and it doesn't guess that case. So this is a worthy security fix
regardless of capabilities. (Assuming the ldso maintainers are willing to
make use of it)

Do we really need to wait for 2.4 to have permissions that work right?

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Hinds: "Re: New kernel/resource.c"
Previous message: Mike Frisch: "Re: NCR810 problems on 2.2.10-ac10"