develooper Front page | perl.perl5.porters | Postings from February 2011

Re: setuid and serious trouble (Re: Time to update POSIX.pm?)

Thread Previous | Thread Next
From:
Mark Overmeer
Date:
February 3, 2011 09:02
Subject:
Re: setuid and serious trouble (Re: Time to update POSIX.pm?)
Message ID:
20110203170222.GA4512@moon.overmeer.net
* Leon Timmermans (fawaka@gmail.com) [110203 16:50]:
> On Thu, Feb 3, 2011 at 5:29 PM, Mark Overmeer <mark@overmeer.net> wrote:
> > It would be very unexpected to see  setreuid($uid, -1)  do something
> > different than  setuid($uid).  The former is to avoid race-conditions
> > when uid and euid both have to change.
> 
> setuid changes either *all uids* or just the euid, but never only the
> ruid. See [1] for an explanation.

My previous message was sent under presure of diner. Now, during diner, I
see you are right: there is a chance that people want to use the old
setuid instead of the more flexible setreuid.  The manual should point
people to use $<, but the code should provide an old-fashioned setuid
for compatibility sake.
-- 
               MarkOv

------------------------------------------------------------------------
       Mark Overmeer MSc                                MARKOV Solutions
       Mark@Overmeer.net                          solutions@overmeer.net
http://Mark.Overmeer.net                   http://solutions.overmeer.net
Thread Previous | Thread Next

nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About