[prev in list] [next in list] [prev in thread] [next in thread]
List: busybox
Subject: Re: Busybox for Mini2440
From: walter harms <wharms () bfs ! de>
Date: 2009-11-24 18:02:50
Message-ID: 4B0C1FCA.6050700 () bfs ! de
[Download RAW message or body]
Mike Frysinger schrieb:
> On Tuesday 24 November 2009 01:54:25 Tito wrote:
>> On Tuesday 24 November 2009 01:06:06 you wrote:
>>>> Did you "suid" busybox?
>>> We don't do that, I was uncomfortable with giving
>>> all BB applets such privilege. We wrote a simple
>>> suid-root exec-er that was linked to the few apps
>>> that needed such privilege, it in turn just execs
>>> "busybox $*" (in effect) to get it done.
>> This is unneeded as busybox drops itself the super user privileges
>> at start for the applets that don't need it. Keep it simple.
>> Why should your suid-root exec-er be safer than busybox?
>
> one might say jim is keeping it simple. it's a lot easier to audit a smaller
> redirector binary than it is to audit the busybox code base.
> -mike
>
we have /etc/busybox (or something like that) for applets that need suid, havent we ?
re,
wh
_______________________________________________
busybox mailing list
busybox@busybox.net
http://lists.busybox.net/mailman/listinfo/busybox
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic