On Mon, Jan 29, 2024 at 06:26:53AM -0800, Alistair Crooks wrote:
> As RVP mentioned, this is a SMOP, but if you're looking for an out of the
> box utility, checkout djb's setuidgid (available in
> pkgsrc/sysutils/daemontools) https://cr.yp.to/daemontools/setuidgid.html
Thanks. I will take a look.
>
> On Mon, 29 Jan 2024 at 04:10, RVP <r...@sdf.org> wrote:
>
> > On Sat, 27 Jan 2024, tlaro...@kergis.com wrote:
> >
> > > But does somebody know of an established program or library that allows
> > > to start a process as root and to automatically downgrade rights for
> > > tasks (I mean identified chunks of whatever code) that do not require
> > > privileges?
> > >
> >
> > You mean toggling between various EUIDs and the saved-SUID? That's
> > pretty standard stuff, but, I don't know if it's been encapsulated
> > in any kind of utility.
> >
> > -RVP
> >
> >
--
Thierry Laronde <tlaronde +AT+ kergis +dot+ com>
http://www.kergis.com/
http://kertex.kergis.com/
Key fingerprint = 0FF7 E906 FBAF FE95 FD89 250D 52B1 AE95 6006 F40C
