Bugtraq mailing list archives
Re: ld confusion
From: gafton () REDHAT COM (Cristian Gafton)
Date: Wed, 11 Feb 1998 10:53:51 -0500
On Tue, 10 Feb 1998, Aleph One wrote:
The GNU dynamic linker in a similar move ignored LD_PRELOAD for setuid/guid binaries. Ulrich Drepper changed it to allow loading "securely" libraries from LD_PRELOAD for setuid/gid programs on Jan 20, 1997 (version???).
... Move that was debated to death on glibc mailing lists. At Red Hat we have patched out that "feature". The updated glibc we provide on our updates dir ignores LD_PRELOAD for setuid/giod programs unless they are run by root.
The correct solution is to ignore LD_PRELOAD for setuid/gid program
Amen! :-) Cristian -- ---------------------------------------------------------------------- Cristian Gafton -- gafton () redhat com -- Red Hat Software, Inc. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ UNIX is user friendly. It's just selective about who its friends are.
Current thread:
- Re: Another ld-linux.so problem, (continued)
- Re: Another ld-linux.so problem Aleph One (Feb 08)
- www-sql cgi prog overrides .htaccess restrictions. Mr LEROY christophe (Feb 09)
- Re: www-sql cgi prog overrides .htaccess restrictions. Stunt Pope (Feb 09)
- SNI-24: IDS Vulnerabilities Secure Networks Inc. (Feb 09)
- AIX/Gradient iFOR/LS bug: follows symlinks Joerg Schumacher (Feb 09)
- Re: AIX/Gradient iFOR/LS bug: follows symlinks Troy A. Bollinger (Feb 09)
- CFP - Recent Advances in Intrusion Detection (RAID'98) Marc Dacier (Feb 10)
- IBM-ERS Security Vulnerability Alert: IBM AIX: Insecure temporary ibm-ers () ERS IBM COM (Feb 10)
- Re: Another ld-linux.so problem Roman Drahtmueller (Feb 08)
- ld confusion Aleph One (Feb 10)
- Re: ld confusion Cristian Gafton (Feb 11)
- Sun Security Bulletin #00162 Howie (Feb 10)
- SMB redirect program for NT Weld Pond (Feb 10)
- Re: SMB redirect program for NT David LeBlanc (Feb 10)
- WIngate: the sequel Alans other account (Feb 10)
- [Workaround]The third SunOS4.1.4 tmpfs bug YAMAMORI Takenori (Feb 10)
- Re: SMB redirect program for NT Theo de Raadt (Feb 10)
- IBM-ERS Security Vulnerability Alert: IBM AIX: Telnet denial of ibm-ers () ERS IBM COM (Feb 11)