Re: strace security <feature>

Alan Cox (alan@lxorguk.ukuu.org.uk)
Wed, 29 Dec 1999 23:21:59 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Kevin George: "Re: strace security <feature>"
Previous message: Gabor Lenart: "Re: spin_unlock optimization"

> It is possible for an ordinary user to use `strace` (which by default
> runs SUID-root), to copy a password file to /etc.

strace is not meant to be installed setuid root.

> Watch!

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Kevin George: "Re: strace security <feature>"
Previous message: Gabor Lenart: "Re: spin_unlock optimization"