from a lwn link, this is interesting stuff about security aspects of file descriptors. The scenario painted by Drepper about a browser plugin is a convincing justification of recent kernel changes and recommended practices regarding use of close-on-exec.
Ulrich Drepper (udrepper) wrote, @ 2008-08-01 16:24:00 Secure File Descriptor Handling http://udrepper.livejournal.com/20407.html Regards, ..jim -- KPLUG-List@kernel-panic.org http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
