[Re: [[Sig] Setuid -- am I doing it right?]]
Tue, 15 May 2001 11:46:42 -0400
Thanks for the response!
Paul F.Ryan wrote:
> I believe it has to do with a script being run in a sub-shell, while an
> executable is under your current process. If you fail to trap all the signals
> in your script, a user could break out and roam about as root. Other
> opinions/explantions are welcomed since I'm running on my failing, aged memory
> out here in Chicago.
Sounds like there is a "real" reason.
> You may also wish to reference `man setuid` and `man setreuid`.
Perhaps more than once!