d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Initialize the group list when we switch uids when run as

Browse Source 
root with "calendar -a".  Drop all privs when execing other
programs.

Obtained from: OpenBSD
This commit is contained in:
mpp 1997-02-06 05:42:49 +00:00
parent be04db9817
commit dd8002bd0b
2 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
usr.bin/calendar/calendar.c
View File

@ -117,6 +117,7 @@ main(argc, argv)
if (doall)
while ((pw = getpwent()) != NULL) {
(void)setegid(pw->pw_gid);
(void)initgroups(pw->pw_name, pw->pw_gid);
(void)seteuid(pw->pw_uid);
if (!chdir(pw->pw_dir))
cal();

4
usr.bin/calendar/io.c
View File

@ -256,6 +256,8 @@ opencal()
(void)close(pdes[1]);
}
(void)close(pdes[0]);
(void)setuid(geteuid());
(void)setgid(getegid());
execl(_PATH_CPP, "cpp", "-P", "-I.", _PATH_INCLUDE, NULL);
(void)fprintf(stderr,
"calendar: execl: %s: %s.\n", _PATH_CPP, strerror(errno));
@ -305,6 +307,8 @@ closecal(fp)
(void)close(pdes[0]);
}
(void)close(pdes[1]);
(void)setuid(geteuid());
(void)setegid(getegid());
execl(_PATH_SENDMAIL, "sendmail", "-i", "-t", "-F",
"\"Reminder Service\"", "-f", "root", NULL);
(void)fprintf(stderr,