[torquedev] Disappearence of /dev/null

Garrick Staples garrick at usc.edu
Thu Aug 5 12:09:21 MDT 2010


On Thu, Aug 05, 2010 at 10:02:33PM +0400, Eygene Ryabinkin alleged:
> Thu, Aug 05, 2010 at 10:58:24AM -0700, Garrick Staples wrote:
> > There are very few unlink calls for user-specified filenames. I say we
> > just make sure we have fork()'d off a child that setuid()'s itself to
> > the user.
> > 
> > If this is a problem for /dev/null, then it could be a problem for any
> > file.
> 
> Holy truth.  We can just do seteuid/setegid for the time of unlink
> calls and set our e[ug]id back once they are done -- this will be
> cheaper and won't leave the possibility for problems: effective
> user/group IDs are checked for FS permissions, so we should be
> safe here.
> 
> Will try to draft the patch using this approach.

Check out the examples in TTmpDirName() and std_file_name().

-- 
Garrick Staples, GNU/Linux HPCC SysAdmin
University of Southern California

Life is Good!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://www.supercluster.org/pipermail/torquedev/attachments/20100805/3f1a71a5/attachment.bin 


More information about the torquedev mailing list