On Tuesday 02 October 2007, Jan Engelhardt wrote:On Oct 2 2007 12:56, Giuliano Gagliardi wrote:I have a server that has to switch to different user ids, but because itAll you need is CAP_SETUID. Also see man setresuid,
does other complex things, I would rather not have it run as root. I only
need the server to be able to switch to certain pre-defined user ids.
where you could, I think, use saved_uid=0 if you do not
like to use real_uid=0 effective_uid=non-0.
But CAP_SETUID would let me change to any uid, would it not? I would like my process to have no possibility to change to any uid, except some predefined set, so that in case of a security hole only those uids could be compromised.