Hello Friends I was trying to make a secured process, by reading the UNIX man pages at link "http://www.whitefang.com/sup/secure-faq.html";. I used the following prcedure to make a secured process:
1. I login as super user "root" 2. I wrote the program prog.c 3. Compiled it with command "cc -o prog prog.c" 4. chmod ug+s prog 5. Now I login to opensolaris using another user id "pankaj" 6. I ran the same program, it gives the output as Real UID = 100 Effective UID = 0 Real GID = 1 Effective GID = 0 calling issetugid() issetugid returning = 1 This shows that my euid (Effective Used Id) and ruid(Real Used Id) are different. issetugid returns 1(true). This also shows that the process is secure. Now I have two questions Q-1 Whether this is a right way to make a secured process. Q-2 If my executable has a dependency then it should load that dependency only from /usr/lib/secure or /lib/secure. In my another program it is not taking from /usr/lib/secure rather it is taking from /usr/lib/ or /lib as default path for looking a shared object. Please reply as soon as possible. with regards Vishwajeet Wadhwa This message posted from opensolaris.org
