Re: COSEINC Linux Advisory #1: Linux Kernel Parent Process Death

看板Bugtraq作者時間18年前 (2007/08/15 05:16), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串2/24 (看更多)
On Tue, 14 Aug 2007, Wojciech Purczynski wrote: > > > I'm not sure this is a real security issue. If some process has the same > > effective UID as the given one, the former can always send any signal to > > the latter. Thus the behaviour you described is IMHO normal. > > It becomes a security issue whenever suid process drops user's UIDs. > But if it drops privileges (changes EUID back to RUID), it can't again send any signal to setuid process. -- Sincerely Your, Dan.
更多 dan. 的文章
文章代碼(AID): #16mXkW00 (Bugtraq)
討論串 (同標題文章)
完整討論串 (本文為第 2 之 24 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共24篇)
更多 dan. 的文章
文章代碼(AID): #16mXkW00 (Bugtraq)