Jeffrey Hutzelman wrote on 10/31/08 14:29: > > I'd also consider whether you want an interface like that of execve(), > which takes a char ** rather than a variable number of char * arguments, > and/or a variant that accepts a single va_list instead of a variable > number of arguments, to make it easier to write wrappers. >
I am considering this in my revised proposal. > > Really? system(3C) changes its UID before running a command? > Not according to the man page on my machine. > Because it's not implemented in the system(3C) function itself. It doesn't happen as a rule, but happens in most use cases of system(3C) inside setuid programs because Bourne shell resets the uid to the real uid of the process when the effective uid is less than 100. -Sumanth
