Hello Stuart,
On 1/22/07, Stuart Henderson <[EMAIL PROTECTED]> wrote:
On 2007/01/22 12:19, Alexander Farber wrote:
> 1) Can't a compromised process change back to its saved root uid?
setresuid/setresgid: set real, effective, *and saved* uid/gid
ok!
> 2) Why is setresuid() used and not setuid()?
to set the saved uid, so there isn't a saved root uid to change back to.
First thanks for your reply. I'm still confused, because the setuid()
man page states, that it will changed the saved uid as well:
"The setuid() function sets the real and effective user IDs and the saved
set-user-ID of the current process to the specified value. "
So, is it ok to use setuid() in my program (to make it compilable
on Cygwin too) or should I better put an #ifdef OpenBSD and
use setresuid()?
Regards
Alex
--
http://preferans.de
