[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: seduid scripts



Hi,

I think setuid scripts are absolutely evil, and should be avoided
at all cost. First of all, there's the security implications.
(Not that MiNT is secure now, but we can try...). A setuid-root
shell scripts can be abused in so many ways we should leave it out.

Secondly, I think all #! interpretation should take place in the kernel.
The library is not the proper place for this to happen, for then
it will also have to built into the desktop, any other programs, etc.
If it's built into the kernel, all programs will be able to profit.

Bye, Hildo