System call confusion

Sep. 16th, 2005 04:19 pm
sawyl: (Default)
[personal profile] sawyl
It turns out that yesterday's hook job badness wasn't down to YT arsing up his code, but instead it was down to an east/west coast split. It turns out that in New Jersey setuid() lets you temporarily drop your privileges and pick them up again, whereas in Berzerkeley, if you drop your privs, they're gone for good unless you use setreuid(). Trouble is, using POSIX::setuid(), you don't really have a lot of choice about what it calls under the hood, so it's quite possible to run the same script on two different machines and to see two different behaviours.
Tags:
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2005-09-16 07:12 pm (UTC)
From: [identity profile] vincel.livejournal.com
Thank heaven for standards, eh?

Date: 2005-09-17 08:15 am (UTC)
From: [identity profile] sawyl.livejournal.com
Have you seen the Open Group stuff (http://www.opengroup.org/onlinepubs/009695399/functions/setuid.html) on the setuid? It says something about a change in setuid behaviour with POSIX 1003.1 to make things more consistent. To my mind, it just makes the situation even more absurdly confusing.
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Profile

sawyl: (Default)
sawyl

August 2018

S M T W T F S
   123 4
5 6 7 8910 11
12131415161718
192021222324 25
262728293031 

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Feb. 4th, 2026 10:05 pm
Powered by Dreamwidth Studios