Next | Classic Unix Security Problems | 12 |
The environment of a setuid program is under control of the person running the program
It may have all sorts of nasty surprises:
Strange resource limits
Strange signal handler tables
Strange current directory or root
Strange umask
Strange file descriptors
Strange controlling terminal
Strange alarm clock
Strange environment variables
Strange arguments
Etc....
Next | Copyright © 2005 M. J. Dominus |