On 10 Sep 2006 at 21:55, Horms wrote: > > i also looked at this code and i think the intention was to drop root > > for good (i.e., for all uids) by using setuid and the POSIX behaviour, > > therefore there must a bug somewhere else (libc/kernel?) that fails > > (in which case other apps could also be affected, this would then be > > a security problem). > > That is interesting. Do you want to poke a bit further?
sorry, i'm not using debian and am short on time anyway for investigating this any further... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
