Re: [TCLUG:21119] RH 5.1 question (sudo!)

To: tclug-list@mn-linux.org
Subject: Re: [TCLUG:21119] RH 5.1 question (sudo!)
From: Callum Lerwick <lerwick@tcfreenet.org>
Date: Mon, 11 Sep 2000 13:20:24 -0500
Organization: Bigtime Networks Inc.
References: <E13YWa2-00065d-00@pchan>
Sender: cal@mnmai05.mn.mediaone.net

> Many programs, when run with root privileges, hold on to them only as long as
> they're needed and drop them the rest of the time.  For example, apache only
> needs to be root when it's creating or destroying processes and operates as a
> non-privileged user the rest of the time.  This way, if there's, e.g., a
> buffer overrun in a URI parsing routine, anything that exploits that overrun
> has to exploit it as a normal user, not as root.

Yeah but xcdroast is just being given root privs externally, it doesn't
have any code for that in it does it?

References:
- Re: [TCLUG:21119] RH 5.1 question (sudo!)
  - From: Dave Sherohman <esper@sherohman.org>

Prev by Date: Re: [TCLUG:21152] electronic lecture notes
Next by Date: Re: [TCLUG:21175] Kernel 2.3.99-pre6 with IPChains
Prev by thread: Re: [TCLUG:21119] RH 5.1 question (sudo!)
Next by thread: Re: [TCLUG:21119] RH 5.1 question (sudo!)
Index(es):
- Date
- Thread