[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: non-setuid rcp problem
27 mar 2008 kl. 18.34 skrev Kevin Sullivan:
> This code is identical in Heimdal 1.1 and the development branch.
> I think that the correct fix is either not doing the seteuid if
> we're not setuid, or (simpler) not checking the return code from
> this seteuid. If we can't become root, oh well.
The rcp binary should not be setuid root at all, its not needed. I'll
resync with the upstream bsd rcp.c code base.