On Wed, Apr 25, 2012 at 07:15, Christopher Zimmermann wrote: > As requested, here's the same test case a little more readable: > > This leaves a backdoor open (possibly in the saved UID):
Yes, if you don't clear the saved uid, you can still switch back to it. You should use setresuid if it's available, because the semantics of setting one uid at a time are a mess. www.cs.berkeley.edu/~daw/papers/setuid-usenix02.pdf
