[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: seduid scripts

To: mint@terminator.rs.itd.umich.edu
Subject: Re: seduid scripts
From: boender@dutiws.TWI.TUDelft.NL (Hildo Biersma)
Date: Thu, 18 Mar 93 13:34:04 MET
In-reply-to: <9303171430.AA02344@irz202.inf.tu-dresden.de>; from "Michael Hohmuth" at Mar 17, 93 3:30 pm

Hi,

I think setuid scripts are absolutely evil, and should be avoided
at all cost. First of all, there's the security implications.
(Not that MiNT is secure now, but we can try...). A setuid-root
shell scripts can be abused in so many ways we should leave it out.

Secondly, I think all #! interpretation should take place in the kernel.
The library is not the proper place for this to happen, for then
it will also have to built into the desktop, any other programs, etc.
If it's built into the kernel, all programs will be able to profit.

Bye, Hildo

Follow-Ups:
- Re: seduid scripts
  - From: sjg@phlim.ph.kcl.ac.uk

Prev by Date: Re: seduid scripts
Next by Date: Re: seduid scripts
Previous by thread: Re: seduid scripts
Next by thread: Re: seduid scripts
Index(es):
- Date
- Thread