Re: kern/42420: $ORIGIN undefined on NetBSD

To: kern-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,austinenglish+netbsd%gmail.com@localhost
Subject: Re: kern/42420: $ORIGIN undefined on NetBSD
From: David Laight <david%l8s.co.uk@localhost>
Date: Wed, 11 Jul 2012 17:35:02 +0000 (UTC)

The following reply was made to PR kern/42420; it has been noted by GNATS.

From: David Laight <david%l8s.co.uk@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: kern/42420: $ORIGIN undefined on NetBSD
Date: Wed, 11 Jul 2012 18:24:18 +0100

 On Wed, Jul 11, 2012 at 05:10:05PM +0000, Matthew Mondor wrote:
 >  
 >  We must be sure that like for LD_PRELOAD and LD_LIBRARY_PATH, ORIGIN be
 >  disabled for setuid and setgid binaries.

 I suspect that $ORIGIN is ok for suid programs provided that the saved
 path contains no symlinks or is a direct reference to the actual directory
 the program binary was loaded from.

 Saving the string passed to exec certainly isn't good enough.

        David

 -- 
 David Laight: david%l8s.co.uk@localhost

Prev by Date: Re: kern/42420: $ORIGIN undefined on NetBSD
Next by Date: Re: kern/42420: $ORIGIN undefined on NetBSD
Previous by Thread: Re: kern/42420: $ORIGIN undefined on NetBSD
Next by Thread: Re: kern/42420: $ORIGIN undefined on NetBSD
Indexes:

Home | Main Index | Thread Index | Old Index