[PD-dev] seteuid vs. setuid
Hans-Christoph Steiner
hans at eds.org
Mon Jan 12 18:38:15 CET 2009
On Jan 12, 2009, at 5:04 AM, Frank Barknecht wrote:
> Hallo,
> Tim Blechmann hat gesagt: // Tim Blechmann wrote:
>
>>> I was just merging 0.41 vanilla into pd-extended 0.40 and noticed
>>> something worthwhile to point out. It seems there isn't a patch
>>> submitted for this, but it is quite simple. Basically, in
>>> s_inter.c,
>>> 'seteuid()' is used to lose setuid privileges. As far as I
>>> understand
>>> it, seteuid() allows the program to keep the root privilege and
>>> switch
>>> back and forth between root and non-root.
>>
>> hm, why does pd need root privileges, anyway? shouldn't the resource
>> limiting be handled by pam these days?
>
> Agreed. IMO it's unnecessary: None of my Pd Linux installs has Pd
> installed setuid, still the "-rt" switch works fine for every user in
> group "audio" and I never run Pd as root.
In any case, it would be good to make the change to setuid() to help
avoid any unwanted visitors coming in via Pd. Someone might set the
setuid bit themselves...
.hc
>
>
> Ciao
> --
> Frank Barknecht Do You RjDj.me? _
> ______footils.org__
>
> _______________________________________________
> Pd-dev mailing list
> Pd-dev at iem.at
> http://lists.puredata.info/listinfo/pd-dev
----------------------------------------------------------------------------
News is what people want to keep hidden and everything else is
publicity. - Bill Moyers
More information about the Pd-dev
mailing list