[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug-inetutils] [PATCH] traceroute: Remove geteuid test.
From: |
Mats Erik Andersson |
Subject: |
[bug-inetutils] [PATCH] traceroute: Remove geteuid test. |
Date: |
Tue, 25 Jan 2011 13:00:15 +0100 |
User-agent: |
Mutt/1.5.18 (2008-05-17) |
Dear all,
the present code "src/traceroute.c" contains a test that the
effective user be "root" at execution time. The corresponding
test is lacking in "ping/ping.c" and "ping/ping6.c". The outcome
is that in GNU/Linux
setcap cap_net_raw=ep ping/ping
setcap cap_net_raw=ep ping/ping6
provide full functionality without use of the set-uid-bit.
In contrast,
setcap cap_net_raw=ep src/traceroute
does not have any effect, since the code aborts prior
to the use of the relevant capability.
Using the following patch, any distributor or administrator
gets the option of continued use of the set-uid-bit, or a new
use of file capabilities for either of
ping, ping6, or traceroute
when built from our sources.
Best regards,
Mats
0001-traceroute-Remove-test-of-effective-UID.patch
Description: Text Data
signature.asc
Description: Digital signature
- [bug-inetutils] [PATCH] traceroute: Remove geteuid test.,
Mats Erik Andersson <=