This is the mail archive of the
libc-hacker@cygnus.com
mailing list for the glibc project.
Re: pt_chown
- To: kettenis@gnu.org
- Subject: Re: pt_chown
- From: Geoff Keating <geoffk@ozemail.com.au>
- Date: Wed, 31 Mar 1999 10:34:16 +1000
- CC: libc-hacker@cygnus.com
- References: <199903291530.KAA23281@mescaline.gnu.org>
> Date: Mon, 29 Mar 1999 10:30:10 -0500
> From: Mark Kettenis <kettenis@gnu.org>
>
> PR 1046 reports a security problem in pt_chown (for which I'll send a
> patch later today). The author also questions the use of argument
> parsing and localisation in the program. I tend to disagree with him
> since the argp and gettext code should be safe to use in a setuid
> program (actually using it in pt_chown might help us catching bugs).
> But since I wrote big parts of the code I may not be very impartial in
> this matter. Does any of us have an opinion on the issue.
su(1) uses gettext and getopt_long from glibc. Certainly, gettext
must be safe in setuid programs. I don't see why argp should be
considered to be less safe than getopt_long, and I'd expect it's
already used in privileged code.
--
Geoffrey Keating <geoffk@ozemail.com.au>
- References:
- pt_chown
- From: Mark Kettenis <kettenis@gnu.org>
- pt_chown
- From: Mark Kettenis <kettenis@gnu.org>