mixing setreuid and seteuid can really screw you, in terms of security

1994-01-23 06:31:35 +00:00 · 1994-01-23 06:31:35 +00:00 · d0ffbae00c
commit d0ffbae00c
parent abf6a6bfdd
2 changed files with 5 additions and 5 deletions
--- a/usr.bin/rdist/docmd.c
+++ b/usr.bin/rdist/docmd.c
@ -33,7 +33,7 @@

 #ifndef lint
 /*static char sccsid[] = "from: @(#)docmd.c	5.8 (Berkeley) 3/1/91";*/
-static char rcsid[] = "$Id: docmd.c,v 1.4 1993/12/04 02:11:29 jtc Exp $";
+static char rcsid[] = "$Id: docmd.c,v 1.5 1994/01/23 06:31:35 cgd Exp $";
 #endif /* not lint */

 #include "defs.h"
@ -236,9 +236,9 @@ makeconn(rhost)
 	}

 	fflush(stdout);
-	setreuid(userid, 0);
+	seteuid(0);
 	rem = rcmd(&rhost, port, user, ruser, buf, 0);
-	setreuid(0, userid);
+	seteuid(userid);
 	if (rem < 0)
 		return(0);
 	cp = buf;
--- a/usr.bin/rdist/main.c
+++ b/usr.bin/rdist/main.c
@ -39,7 +39,7 @@ char copyright[] =

 #ifndef lint
 /*static char sccsid[] = "from: @(#)main.c	5.6 (Berkeley) 8/27/90";*/
-static char rcsid[] = "$Id: main.c,v 1.2 1993/08/01 18:09:42 mycroft Exp $";
+static char rcsid[] = "$Id: main.c,v 1.3 1994/01/23 06:31:38 cgd Exp $";
 #endif /* not lint */

 #include "defs.h"
@ -186,7 +186,7 @@ main(argc, argv)
 	}
 	*hp = NULL;

-	setreuid(0, userid);
+	seteuid(userid);
 	mktemp(tempfile);

 	if (iamremote) {