Re: issetugid() for other procs
- From: "Zane C.B." <v.velox@xxxxxxxxxx>
- Date: Sun, 7 Oct 2007 13:39:17 -0500
On Sun, 7 Oct 2007 21:04:02 +0300
Kostik Belousov <kostikbel@xxxxxxxxx> wrote:
On Sun, Oct 07, 2007 at 12:28:05PM -0500, Zane C.B. wrote:
On Sun, 07 Oct 2007 18:25:57 +0200
Jan M?nther <jan.muenther@xxxxxxxxx> wrote:
man getuid, man geteuid.
This does work for other procs, only the one that is calling it.
Like I said initially I am looking to check if another proc has
run setuid, seteuid, or been executed or forked by one that has.
Note that what you trying to do is racy by definition.
Why is that? It seems like something that be useful instead of
something taboo. My interest in it is I am writing a database
connector interested in making it paranoid as possible.
To get the value of issetugid() for some other process, as it
_could_ be returned at some moment in a time, you shall check the
P_SUGID bit of the p_flag from the corresponding struct proc. This
is available by the kvm_getprocs(3) interface in the ki_flag field
of the kinfo_proc structure, see corresponding man page.
Awesome, I will begin investigating this.
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: issetugid() for other procs
- From: Kostik Belousov
- Re: issetugid() for other procs
- References:
- issetugid() for other procs
- From: Zane C.B.
- Re: issetugid() for other procs
- From: Jan Münther
- Re: issetugid() for other procs
- From: Zane C.B.
- Re: issetugid() for other procs
- From: Kostik Belousov
- issetugid() for other procs
- Prev by Date: Re: issetugid() for other procs
- Next by Date: Re: issetugid() for other procs
- Previous by thread: Re: issetugid() for other procs
- Next by thread: Re: issetugid() for other procs
- Index(es):
Relevant Pages
|
|
