-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Fri, 2019-02-15 at 18:37 +0000, Thorsten Glaser wrote: > Perhaps, if it’s best to consider these LD_PRELOADable libraries > that could benefit from the glibc suid bit case-by-case, this can > be “preapproved”?
My own opinion on this is that no setuid bits should be added to a library without a thorough audit of the source code to make sure it can't be abused against an suid binary in order to escalate privilege. Regards, - -- Yves-Alexis -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAlxoLBYACgkQ3rYcyPpX RFt9OQf/e1HWtIpEtKzxGEgRO+vFFRFgXP75t8Ypim43Wisp97eHg0eR8MytP2Fd dGjptqUB6wIuSOP3X6NSmJJ2z1OLGVT74TcckcizC4F0dkl98j4LI5DdSSQk7CP0 ATO5m0teoLn+sbpzqfez3BHso9B+T7boLhdGcc8wF4n7RNjLpF8YoQWmoebRAbap 7nwBfRECbGoYrUGMTQSafdXr3gC3KlKZYegyxsjsHXHUqfUAW8CmIhfPRicfwbRn f0cmxryHoR91rYuw3a36uOy7drc9Il1kVSuEcM97ciaV5ajAvXjACURdBVF/yHEF gCzfn+3+e6n2+x04IEu1V1vQXlqSkg== =6PAs -----END PGP SIGNATURE-----
