SunOS and shared libraries, security aspects
Dan Bernstein
brnstnd at kramden.acf.nyu.edu
Sun Sep 2 08:09:41 AEST 1990
In article <3991 at auspex.auspex.com> guy at auspex.auspex.com (Guy Harris) writes:
> The fix ain't to
> change "ld.so"s rules for when it should honor LD_LIBRARY_PATH, it's to
> change "login" to be more selective about which environment variables
> it'll pass through.
Rather, it's to make login non-setuid in the first place. The only time
login should run as root is from a controlled daemon, such as telnetd or
getty.
---Dan
More information about the Comp.unix.wizards
mailing list