[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Non-priv way to collect job stats under Intel?

Subject: Re: Non-priv way to collect job stats under Intel?
From: Garth Cummings <email@hidden>
Date: Tue, 1 Aug 2006 09:52:34 -0700
Delivered-to: email@hidden
Delivered-to: email@hidden

Hi Jeffrey,

On Aug 1, 2006, at 7:59 AM, Jeffrey Johnson wrote:

By "shelling out" we'd be using popen(/bin/ps ....).

Running suid binaries with popen or system is considered a security risk as well.

If your competitors are getting the process stats the same way you are, they'll have to solve the same problem, of course.

The authorization is normally done at install time when the helper tool's setuid bit is set. After that, it's just another setuid root tool but it only runs if the host process started it.

--gc

____________________________________________________________________

Garth Cummings email@hidden

Sr. Software Engineer

Apple Developer Technical Support

<http://developer.apple.com/technicalsupport>

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/darwin-dev/email@hidden

This email sent to email@hidden

Follow-Ups:
- Re: Non-priv way to collect job stats under Intel?
  - From: Erik Paulson <email@hidden>

References:
	>Re: Non-priv way to collect job stats under Intel? (From: Jeffrey Johnson <email@hidden>)

Prev by Date: Re: Non-priv way to collect job stats under Intel?
Next by Date: Re: kld(): Undefined Symbols error
Previous by thread: Re: Non-priv way to collect job stats under Intel?
Next by thread: Re: Non-priv way to collect job stats under Intel?
Index(es):
- Date
- Thread

Home