Subject: Re: setreuid() and setregid()
To: Greg A. Woods <firstname.lastname@example.org>
From: matthew green <email@example.com>
Date: 05/27/1996 11:08:53
the problem with _POSIX_SAVED_IDS is that it does *not*
allow a setuid non-root program to entirely give up the
this is exactly why netbsd (4.4) doesn't define this.
i can remember noticing this not defined some time ago
(1994ish) and reading up about this in steven's book. i
remember disagreeing with what steven's said, at the time.
i really like our current saved userid model. the only
reason charles is proposing to add setre[gu]id() back is for
compatibility -- the current interfaces aren't correct and
can cause problems (perl is one that loses because of this).