[jira] [Updated] (MESOS-6504) Use 'geteuid()' for the root privileges check.

Gilbert Song (JIRA) Wed, 30 Nov 2016 10:58:36 -0800

     [ 
https://issues.apache.org/jira/browse/MESOS-6504?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Gilbert Song updated MESOS-6504:
--------------------------------
            Shepherd: Jie Yu
              Sprint: Mesosphere Sprint 47
        Story Points: 3
    Target Version/s: 1.2.0
              Labels: backend isolator mesosphere user  (was: mesosphere user)
         Component/s: isolation

> Use 'geteuid()' for the root privileges check.
> ----------------------------------------------
>
>                 Key: MESOS-6504
>                 URL: https://issues.apache.org/jira/browse/MESOS-6504
>             Project: Mesos
>          Issue Type: Bug
>          Components: isolation
>            Reporter: Gilbert Song
>            Assignee: Gilbert Song
>              Labels: backend, isolator, mesosphere, user
>
> Currently, parts of code in Mesos check the root privileges using os::user() 
> to compare to "root", which is not sufficient, since it compares the real 
> user. When people change the mesos binary by 'setuid root', the process may 
> not have the right permission to execute.
> We should check the effective user id instead in our code. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (MESOS-6504) Use 'geteuid()' for the root privileges check.

Reply via email to