On Thu Jan 2 16:33:33 EST 2014, [email protected] wrote: > a process running as "none" can only access its own (calling) process. > > but noteid write allows it to change the noteid of its own process to > a nother group (also running as none) which allows it to send notes > to that group. > > this has to be prevented.
; cd /proc/$pid; pwd
/proc/75189
; cat noteid
76810 ;
; auth/none
; cd /proc/$pid; pwd
/proc/75192
; cat noteid
cat: can't open noteid: 'noteid' permission denied
- erik
