[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MiNT] getenv() and security

To: "Guido Flohr" <gufl0000@stud.uni-sb.de>
Subject: Re: [MiNT] getenv() and security
From: Andreas Schwab <schwab@issan.cs.uni-dortmund.de>
Date: 07 May 1999 11:11:04 +0200
Cc: MiNT mailing list <mint@fishpool.com>
In-reply-to: "Guido Flohr"'s message of "Wed, 5 May 1999 18:57:29 +0200"
References: <19990505185729.F314@zowee.rz.uni-sb.de>
Sender: owner-mint@fishpool.com

"Guido Flohr" <gufl0000@stud.uni-sb.de> writes:

|> Hi,
|> 
|> the GNU libc disables most library-internal usage of the environment if a
|> process was started with the suid/sgid bit set on, when real and effective
|> user/group id differ.  Does anybody know what is unsafe for suid programs
|> to do for example getenv ("HOME") or getenv ("TMPDIR")?

A suid *program* can do whatever it wants, as long as it behaves properly.
But the libc should never implicitly depend on user settable parameters
when starting up in privileged mode.  Look up tainting in the perl manual.

Andreas.

-- 
Andreas Schwab                                      "And now for something
schwab@issan.cs.uni-dortmund.de                      completely different"
schwab@gnu.org

References:
- [MiNT] getenv() and security
  - From: "Guido Flohr" <gufl0000@stud.uni-sb.de>

Prev by Date: Re: [MiNT] Porting with MiNTlib
Next by Date: Re: [MiNT] Porting with MiNTlib
Previous by thread: [MiNT] getenv() and security
Next by thread: [MiNT] MiNTLib and GPL/BSD copyright
Index(es):
- Date
- Thread