[PD] setuid
Miller Puckette
mpuckett at man104-1.ucsd.edu
Thu Aug 23 18:47:08 CEST 2001
Yes, not to mention netreceive...
Supposedly this should actually be OK though; Pd uses setuid to promote
its priority to realtime, then immediately sheds root privelige ala
seteuid(getuid()) so that there shouldn't be any way to exploit it. Anyone
figures out an exploit, maybe you should just send me private mail so I can
close it and update Pd again.
cheers
Miller
On Thu, Aug 23, 2001 at 06:36:32PM +0200, CK wrote:
> I read:
> >
> > Yes, but please download 0.33patch2 or later -- earlier versions aren't
> > airtight against people getting root privelige accidentally...
>
> and maybe consider the shell object from guenthers ggee ;)
>
> lg
>
> x
>
> --
> chris at lo-res.org Postmodernism is german romanticism with better
> http://pilot.fm/ special effects. (Jeff Keuss / via ctheory.com)
More information about the Pd-list
mailing list