Opinion on checking return value of setuid(getuid())?

Erik Cederstrand erik at cederstrand.dk
Mon Oct 1 11:39:27 UTC 2012


Den 01/10/2012 kl. 13.08 skrev Konstantin Belousov <kostikbel at gmail.com>:
> 
> I do not believe in the dreadful 'flood ping' security breach. Is a
> local escalation possible with non-dropped root ?

No idea. Reading the code, I see some functionality the author decided should only be accessible to root users. There's 600 lines of code left in main() and I'm not skilled enough to see if there are any potential exploits left.

If it's not a security breach then I'm on the wrong list, but I guess it still leads to unintended behavior if setuid() fails?

Erik


More information about the freebsd-security mailing list