[X-Unix] Security content of the Mac OS X 10.3.9 Update
Albert Lunde
atlunde at panix.com
Mon Apr 18 08:22:29 PDT 2005
On Mon, Apr 18, 2005 at 11:16:18AM -0400, Matthew Barr wrote:
> What I'm concerned about is things like spamd, a part of spamassassin.
> It runs as a user, then setuid's to the user running the client. This
> allows it to use a bunch of config files and db's as the user
> directly... It sounds like it'll be dead if you add in 10.3.9. We'll
> have to see.
Is it a binary or a script (perl/shell/python etc).
If it's a binary there's no problem.
Also, note that this is not talking about programs like Apache httpd
that are started as root, then execute "setuid" or "setgid" system
calls, to change their effective permissions: that's something different.
More information about the X-Unix
mailing list