> prtctl(PR_SET_KEEPCAPS, 1)
> setuid(uid)
> setgid(gid)
>
> The end result is exactly the same. I'm trying to envision how this patch
> would change security in a negative way. I keep coming back to the Unix
> idea of "don't be smarter than the admin; don't try to protect root from
> himself".
>
> Maybe we could enchance PR_SET_KEEPCAPS so that:
>
> prtctl(PR_SET_KEEPCAPS, 2) kept both the permitted and the effective caps.
If thats the concern (and its a fair one) then just fix 2.5 not 2.4. 2.4
stuff will need to do the usermode fixes anyway due to old releases
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue May 14 2002 - 12:00:09 EST