Re: [PATCH] capabilities done right

Alexander S A Kjeldaas (Alexander.Kjeldaas@fast.no)
Wed, 12 May 1999 16:25:00 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Richard B. Johnson: "Re: Clear reboot?"
Previous message: Pavel Machek: "Re: [PATCH] capabilities done right"

On Wed, May 12, 1999 at 02:03:28PM +0200, Pavel Machek wrote:
> >
> > But then the process will loose its capabilities. What you have
> > achieved is simply that there are a few things you can't do directly
> > when you have found a hole in ping. You can still do them indirectly
> > since you own the UID.
>
> No. Look above. elfcap hack allows you not only to loose capabilities,
> but also set euid back to ruid - so ping command will not really run
> with euid=0, and you will not be able to do anything - directly or
> indirectly.
>

Ahh - suddenly your patch shines :-). It seems like a very useful
hack. If we go for this patch, I guess we need a small extra check
for CAP_SETFCAP when setting a file suid-root in
fs/attr.c:notify_change. Also, I couldn't access the "info & utility
programs" at the URL listed in the documentation though. Is the URL
correct?

astor

-- Alexander Kjeldaas, Fast Search & Transfer, Trondheim, Norway

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Richard B. Johnson: "Re: Clear reboot?"
Previous message: Pavel Machek: "Re: [PATCH] capabilities done right"