On 3/20/06, Phillip J. Eby <[EMAIL PROTECTED]> wrote: > Yeah, and this latter exchange has convinced me that it's the only simple > way to avoid privilege escalation attacks. That is, it doesn't require > low/medium-privilege server processes to be able to write stuff (like entry > point code, pids, or configuration files) that gets read or executed (or > otherwise relied upon) by the high-privilege installation process.
Excellent point. Clearly, I hadn't thought of privilege escalation... Kevin _______________________________________________ Distutils-SIG maillist - [email protected] http://mail.python.org/mailman/listinfo/distutils-sig
