Danek Duvall wrote: > On Thu, Nov 13, 2008 at 10:41:42AM -0600, Shawn Walker wrote: > >>> Regardless, there *definitely* needs to be a comment explaining why we >>> trust environment variables more than we trust kernel-provided code. >>> It's unfortunate that The Primary Administrator profile is given uid=0 >>> rather than euid=0, but since it's the big hammer, I guess it has to be >>> big enough. Perhaps we should be using getauid() on Solaris? >> Long-term, that sounds reasonable. Should I open a bug? > > For the comment, no. :) For a better mechanism (not necessarily > getauid()), sure. Make it a low priority, since it's unlikely we'll have > anything useful for some time.
Ooops, sorry, didn't mean to imply one for the comment. I've already added a comment. I meant the getauid() part. I'll open one... -- Shawn Walker _______________________________________________ pkg-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
