> On 2017-11-02, at 08:26 , Denys Vlasenko wrote:
>
> On Wed, Nov 1, 2017 at 2:28 AM, Jack Schmidt wrote:
>> I believe I have found a bug in the current version of busybox.
>>
>> When:
>> * an applet is marked NOEXEC,
>> * busybox is configured w
When I tried to use inetd as an unprivileged user on linux (4.9.x, x86_64,
glibc or musl), I get:
inetd: can't set groups: Operation not permitted
I believe the problem is line 1486, where it compares the desired uid to 0,
rather than to the current uid, to decide whether to set groups.
For ex
I believe I have found a bug in the current version of busybox.
When:
* an applet is marked NOEXEC,
* busybox is configured with CONFIG_FEATURE_SH_STANDALONE=y, and
* busybox's ash is asked to do "ENV_VAR=newval no_exec_app"
Then the no_exec app is not called with the new environment.
This affec