[PATCH] caching daemon release and nsswitch patches

Jilles Tjoelker jilles at stack.nl
Wed Aug 31 19:01:01 GMT 2005


[cc list stripped]
On Tue, Aug 30, 2005 at 05:32:52PM +0400, Michael Bushkov wrote:
> We can't ensure that, I guess. In the upcoming version (before the 1st of 
> September), the cache would be per-user. This would solve all the security 
> problems. In a little while, I'll implement the ability for cached to act 
> as nscd. So you'll be able to choose the behaviour.

What about setuid/setgid programs then?

setuid root programs can use root's cache, perhaps a similar thing could
be done for other setuid programs, but what about setgid?

perhaps don't cache at all for set*id programs (issetugid(2))?

-- 
Jilles Tjoelker


More information about the freebsd-current mailing list