Ну чтобы не бояться не быть полезным - Post a comment

[Recent Entries][Archive][Friends][User Info]

( Read Comments )
TimeText
07:39 pm

[info]imz

[Link]

 meanwhile, I have learned there used to be a sane reason for disallowing setUID scripts!..
Meanwhile I have learned a propos the issue of the assumed insecurity of setUID scripts that not only the absence of trust in the interpreter and its programmer is the reason for disallowing setUID scripts, but also there used to be such a reason as a possible race attack on the execution of "shebangs" -- http://unix.stackexchange.com/q/364/4319#2910 :

If setuid scripts are allowed with this implementation, an attacker can invoke an arbitrary script by creating a symbolic link to an existing setuid script, executing it, and arranging to change the link after the kernel has performed step 1 and before the interpreter gets around to opening its first argument. For this reason, most unices ignore the setuid bit when they detect a shebang.


Great to know!

(But as that explanation notes there have been invented safe mechanisms to achieve our goal here; so we still should hate modern Linux for this restriction, unlike *BSDs and Mac OS X, probably.)
Reply:
 
From:
(will be screened)
Identity URL: 
имя пользователя:    
Вы должны предварительно войти в LiveJournal.com
 
E-mail для ответов: 
Вы сможете оставлять комментарии, даже если не введете e-mail.
Но вы не сможете получать уведомления об ответах на ваши комментарии!
Внимание: на указанный адрес будет выслано подтверждение.
Username:
Password:
Subject:
No HTML allowed in subject
Message:


My Website Powered by LJ.Rossia.org