Bugtraq mailing list archives
Re: Linux kernel setgid implementation flaw
From: wietse () porcupine org (Wietse Venema)
Date: Fri, 19 Jul 2002 12:48:49 -0400 (EDT)
FYI,
The August USENIX Security conference has a good paper that examines
in depth the semantics of UID and GID setting calls for Solaris,
FreeBSD and Linux. The differences are quite remarkable.
Wietse
Setuid Demystified, by Hao Chen, David Wagner, UC Berkeley; Drew
Dean, SRI International
www.cs.berkeley.edu/~daw/papers/setuid-usenix02.pdf
Current thread:
- Linux kernel setgid implementation flaw FozZy (Jul 18)
- Re: Linux kernel setgid implementation flaw FozZy (Jul 19)
- Re: Linux kernel setgid implementation flaw Wietse Venema (Jul 19)
- Re: Linux kernel setgid implementation flaw FozZy (Jul 19)
- Re: Linux kernel setgid implementation flaw Wietse Venema (Jul 19)
- Re: Linux kernel setgid implementation flaw FozZy (Jul 19)