On Tue, Sep 09, 2003 at 10:05:09AM -0400, Pierre A. Humblet wrote:
> Corinna Vinschen wrote:
> >
> > On Mon, Sep 08, 2003 at 09:11:34PM -0400, Christopher Faylor wrote:
> > > On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
> > > >This is the first in a series of patches fixing s
> Christopher Faylor wrote:
>
> > I wonder if it is time to bite the bullet and get rid of user-mode
> > mounts entirely. Or maybe disallow them in suid'ed sessions? They
> > are always going to be a security hole AFAICT.
>
> I think that would be a bad idea. What if I want to install
> a pri
Corinna Vinschen wrote:
>
> On Mon, Sep 08, 2003 at 09:11:34PM -0400, Christopher Faylor wrote:
> > On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
> > >This is the first in a series of patches fixing security holes
> > >associated with the file mappings in the core of Cygwin.
>
Christopher Faylor wrote:
>
> On Tue, Sep 09, 2003 at 12:12:11AM -0400, Pierre A. Humblet wrote:
> >At 09:11 PM 9/8/2003 -0400, you wrote:
> >>On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
> >>>This is the first in a series of patches fixing security holes
> >>>associated with
On Mon, Sep 08, 2003 at 09:11:34PM -0400, Christopher Faylor wrote:
> On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
> >This is the first in a series of patches fixing security holes
> >associated with the file mappings in the core of Cygwin.
> >I hope the explanations below are
On Tue, Sep 09, 2003 at 12:12:11AM -0400, Pierre A. Humblet wrote:
>At 09:11 PM 9/8/2003 -0400, you wrote:
>>On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
>>>This is the first in a series of patches fixing security holes
>>>associated with the file mappings in the core of Cygwi
At 09:11 PM 9/8/2003 -0400, you wrote:
>On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
>>This is the first in a series of patches fixing security holes
>>associated with the file mappings in the core of Cygwin.
>>I hope the explanations below are clear!
>
>Yes they are, thanks.
Christopher Faylor wrote:
I wonder if it is time to bite the bullet and get rid of user-mode
mounts entirely. Or maybe disallow them in suid'ed sessions? They
are always going to be a security hole AFAICT.
I think that would be a bad idea. What if I want to install a private
version of cygwin
On Mon, Sep 08, 2003 at 08:46:06PM -0400, Pierre A. Humblet wrote:
>This is the first in a series of patches fixing security holes
>associated with the file mappings in the core of Cygwin.
>I hope the explanations below are clear!
Yes they are, thanks. I can't comment on the security stuff but
ev
