Re: suid GUI apps

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Fri May 19 2000 - 08:16:57 EST

Next message: I Lee Hetherington: "Re: ATA on the move.....Answer to SCSI 3wks back"
Previous message: kumon@flab.fujitsu.co.jp: "[PATCH] Fast csum_partial_copy_generic and more"
In reply to: Paul Barton-Davis: "Re: suid GUI apps"
Next in thread: Chris Evans: "Re: suid GUI apps"
Reply: Chris Evans: "Re: suid GUI apps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> >the X11 interface unpriviledged - after all it is just display not real time
> >tied. When you get to video playback you get X and stuff involved and it
> >does get harder.
>
> What do I start reading to catch up on capabilities ?

include/linux/capability.h

The root powers are divided up into about 25 subsets, so an suid program
can start by dropping all but those it needs. They dont always line up ideally
with needs but more work can be done there in 2.5

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: I Lee Hetherington: "Re: ATA on the move.....Answer to SCSI 3wks back"
Previous message: kumon@flab.fujitsu.co.jp: "[PATCH] Fast csum_partial_copy_generic and more"
In reply to: Paul Barton-Davis: "Re: suid GUI apps"
Next in thread: Chris Evans: "Re: suid GUI apps"
Reply: Chris Evans: "Re: suid GUI apps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue May 23 2000 - 21:00:17 EST