CVSROOT: /cvs Module name: src Changes by: mill...@cvs.openbsd.org 2015/11/03 09:28:43
Modified files:
usr.bin/at : at.c
Removed files:
usr.bin/at : privs.h
Log message:
It is only necessary to swap the effective gid when reading a file.
An attacker exploiting an overflow can change the egid themselves
so running with the egid of the user in other places just gives you
a false sense of security. OK nicm@ deraadt@
