Follow-up Comment #1, bug #48456 (project hurd):
I wrote: "This could perhaps be used for denial of service, if a long-lived
process calls a less-trusted one."
The exec server is a long-lived process, and it calls several RPC routines on
the FILE and OLDTASK passed to exec_exec, which can be called by anyone. That
makes it vulnerable to the DoS. I don't currently have a test case for that.
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?48456>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
