Hello Friends
I was trying to make a secured process, by reading the UNIX
man pages
at link "h
ttp://www.whitefang.com/sup/secure-faq.html". I
used the following prcedure to make a secured process:
1. I login as super user "root"
2. I wrote the program prog.c
3. Compiled it with command "cc -o prog prog.c"
4. chmod ug+s prog
5. Now I login to opensolaris using another user id
"pankaj"
6. I ran the same program, it gives the output as
Real UID = 100
Effective UID = 0
Real GID = 1
Effective GID = 0
calling issetugid()
issetugid returning = 1
This shows that my euid (Effective Used Id) and ruid(Real
Used Id) are different.
issetugid returns 1(true).
This also shows that the process is secure.
Now I have two questions
Q-1 Whether this is a right way to make a secured process.
Q-2 If my executable has a dependency then it should load
that dependency only from /usr/lib/secure or /lib/secure. In
my another program it is not taking from /usr/lib/secure
rather it is taking from /usr/lib/ or /lib as default path
for looking a shared object.
Please reply as soon as possible.
with regards
Vishwajeet Wadhwa
This message posted from opensolaris.org
_______________________________________________
gnu-sol-discuss mailing list
gnu-sol-discuss opensolaris.org
|
