On Thu, Nov 13, 2008 at 10:41:42AM -0600, Shawn Walker wrote: >> Regardless, there *definitely* needs to be a comment explaining why we >> trust environment variables more than we trust kernel-provided code. >> It's unfortunate that The Primary Administrator profile is given uid=0 >> rather than euid=0, but since it's the big hammer, I guess it has to be >> big enough. Perhaps we should be using getauid() on Solaris? > > Long-term, that sounds reasonable. Should I open a bug?
For the comment, no. :) For a better mechanism (not necessarily getauid()), sure. Make it a low priority, since it's unlikely we'll have anything useful for some time. Danek _______________________________________________ pkg-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
