[PATCH] caching daemon release and nsswitch patches
Jilles Tjoelker
jilles at stack.nl
Wed Aug 31 19:01:01 GMT 2005
[cc list stripped]
On Tue, Aug 30, 2005 at 05:32:52PM +0400, Michael Bushkov wrote:
> We can't ensure that, I guess. In the upcoming version (before the 1st of
> September), the cache would be per-user. This would solve all the security
> problems. In a little while, I'll implement the ability for cached to act
> as nscd. So you'll be able to choose the behaviour.
What about setuid/setgid programs then?
setuid root programs can use root's cache, perhaps a similar thing could
be done for other setuid programs, but what about setgid?
perhaps don't cache at all for set*id programs (issetugid(2))?
--
Jilles Tjoelker
More information about the freebsd-current
mailing list