Should samba become_root() before calling panic action?
Andrew Bartlett
abartlet at samba.org
Tue Apr 8 23:33:30 GMT 2003
On Wed, 2003-04-09 at 04:39, MCCALL,DON (HP-USA,ex1) wrote:
> Might it be better to leave this to the panic script itself; ie
> require a 'su' to root in the panic script to ensure that it run as
> root to do the gdb backtrace???
> Not completely secure either, but putting responsibility into the *ux
> admin's hands might be safer than preempting that choice in our code...
> hope this helps,
> Don
Well, the script would run with the same privilages as smbd - that is,
the right to regain root - so it would just be a small matter of
adjusting the effective uid back again.
We might as well do it ourselves - just watch the linking stuff -
smb_panic() isn't only smbd I think...
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20030409/caab1129/attachment.bin
More information about the samba-technical
mailing list