On Sun, 2001-09-16 at 23:00, Brian J. Murrell wrote:
> On Sun, Sep 16, 2001 at 10:48:38AM +0400, Borsenkow Andrej wrote:
> >
> > If I understand it correctly libsafe is used only for daemons (daemon
> > and action in /etc/init.d/functions.
>
> Ugh! Are daemons the only risk of buffer overflows resulting in local
> root access? Nope. Any program that is suid root suffers this
> vulnerability as well.
>
> Why not use libsafe for _all_ processes?
Because of the risk of breakage due to glibc incompatibility.
The best solution would be to leave the choise (server / all process).
[...]
--
Yoann Vandoorselaere
http://prelude.sourceforge.net
