| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>, Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL Development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: setuid(geteuid());? |
| Date: | 2001-04-21 16:43:37 |
| Message-ID: | 1298.987871417@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>> so it seems to make sure the real/saved uid matches the effective uid.
>> Now, considering we don't use uid/euid distinction for anything, I agree
>> it is useless and should be removed.
> No, it is NOT useless and must NOT be removed.
But it would make sense to move it over to main.c where the primary
test for not running as root is, since these are closely related
considerations: we don't want either euid or ruid to be root.
I'll make that change unless I hear objections...
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2001-04-21 16:51:45 | Re: setuid(geteuid());? |
| Previous Message | Tom Lane | 2001-04-21 16:29:47 | Re: setuid(geteuid());? |