Very Computer

1. Problem with Solaris 7 Kernel patch 106541-15 and catopen/catgets

[[ PLEASE DON'T SEND ME EMAIL COPIES OF POSTINGS ]]

In patch 106541-15 we've fixed the security problems for
the NLSPATH problems.

Unfortunately, we cannot fix this properly and have everything still
work exactly as before.

Chowning the files to root helps some; installing them in system
directories also.  Not requiring NLSPATH to be set also helps.

I'm not quite sure I understand what you mean my:
"other applications which run under non-root user IDs can not run suid program"

I think we changed it such that suid programs can only open root-owned
catalogues.  I'd need to check.

I did the code and it's pretty fascist.

I'd need to know a bit more about what you're doing.  That way
I can either explain to you why what you're doing is a possible
security hole or whether we're perhaps too strict.

Casper
--
Expressed in this posting are my opinions.  They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.

2. Trouble with Advansys SCSI/WangDAT tape

3. Where can I find the source for catgets and catopen?

4. tcpdump: how to get only the data ?

5. aha2940u2w fails with rh61,62 suse6.4, ok w/rh6 and suse6.2

6. Allowing users to "give away" files ...

7. SuSE6.0 setting up Lib/modules/2.0.36 ...failed

8. Logitech USB 2buttton wheel mouse

9. urgent Suse6.0 "setting up /lib/modules2.0.36..failed

10. Elsa Gloria-L fails after Suse6.0 -> 6.2 upgrade

11. SuSE6.0 setting up Lib/modules/2.0.36 ...failed

12. Correct prototype for catgets()?

13. catgets and line breaks