On Sun, Sep 10, 2006 at 06:50:55PM +0200, [EMAIL PROTECTED] wrote: > On 10 Sep 2006 at 21:55, Horms wrote: > > > > i also looked at this code and i think the intention was to drop root > > > for good (i.e., for all uids) by using setuid and the POSIX behaviour, > > > therefore there must a bug somewhere else (libc/kernel?) that fails > > > (in which case other apps could also be affected, this would then be > > > a security problem). > > > > That is interesting. Do you want to poke a bit further? > > sorry, i'm not using debian and am short on time anyway for > investigating this any further...
No problem, thanks for all your help so far -- Horms H: http://www.vergenet.net/~horms/ W: http://www.valinux.co.jp/en/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
