Re: GTK+-1.2.9 Released

From: Paul Davis <pbd Op Net>
To: Owen Taylor <otaylor redhat com>
Cc: Drazen Kacar <dave arsdigita com>, gtk-list gnome org
Subject: Re: GTK+-1.2.9 Released
Date: Sat, 03 Mar 2001 18:02:39 -0500

>> > * Refuse to initialize GTK+ when setuid (http://www.gtk.org/setuid.html)
>
>
>It includes setgid, however, the check does not kick in if it
>the program has already dropped setgid privileges before initializing
>GTK+.

Whats the nature of the check ? Do I need to use seteuid() or
setruid() or something else to get GTK to believe that I've dropped
setuid priviledges? My programs are soft-real-time audio systems that
are intended to run on primarily dedicated workstations, and need to
use POSIX RT scheduling and mlock(2) to ensure adequate performance. I
attempt to drop setuid before starting GTK. I understand the problems
it can cause, and so although there is no way I can afford to modify
the programs to meet the model described by the link above, I would
like to at least drop the priviledge in an appropriate way.

And note: I will soon be using capabilities instead. Is GTK planning
to do anything special about programs which have the RESOURCE
capability ?

--p

Follow-Ups:
- Re: GTK+-1.2.9 Released
  - From: Owen Taylor

References:
- Re: GTK+-1.2.9 Released
  - From: Owen Taylor

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]