Re: Opinion on checking return value of setuid(getuid())?

看板FB_security作者時間13年前 (2012/10/01 19:32), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串3/14 (看更多)
Den 01/10/2012 kl. 12.49 skrev Konstantin Belousov = <kostikbel@gmail.com>: > setuid() might also fail for other reasons, e.g. due to custom MAC = module. >=20 > In case of ping, does the failure of dropping the suid bit is = important ? I believe it is. If 'setuid()' fails then 'uid' becomes 0 and it's = possible e.g. to do a "Flood ping". Erik= _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 erik. 的文章
文章代碼(AID): #1GQNyqZX (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 3 之 14 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共14篇)
更多 erik. 的文章
文章代碼(AID): #1GQNyqZX (FB_security)