tech-kern archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Option INSECURE abuse


The INSECURE option is used to indicate the kernel should be
"hard-wired" to securelevel -1. This is how it's documented
everywhere. (In practice, it just starts with -1; it can be raised.)

There's an abuse of this option by libsa, however, that basically uses
it to tell whether the image loaded by exec() can be owned by anyone
other than uid 0. I believe this to be undocumented.

I'd like to fix this in the following way:
  - Change the option name used to indicate the aforementioned, from
  - Add this option either commented or uncommented, wherever INSECURE
is, to prevent behavior from changing.

Would this be okay?



Home | Main Index | Thread Index | Old Index