[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug 33207] Results of my suexec.c code audit


--- Comment #7 from Roland Illig <roland.illig@xxxxxx> ---
I you want to test whether the logging fails, it should be possible have an ELF
binary for another architecture in cgi-bin. This scenario should trigger
exactly that code path.

Background and intentions

The reason I'm so picky with the suexec code is that for me, back in 2005, it
was the primary example of how to program very carefully. It's a setuid binary
after all, therefore it should demonstrate best practices and document many
pitfalls. And it does a great job at this, serving well for education.
Therefore, and because it is such a prominent example of security critical
code, I wanted it to be perfect.

You are receiving this mail because:
You are the assignee for the bug.
To unsubscribe, e-mail: bugs-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: bugs-help@xxxxxxxxxxxxxxxx