Re: Moving wrappers w/SUID contained executables (Was: Re: "First Run" installation of Application support stuff?)
Re: Moving wrappers w/SUID contained executables (Was: Re: "First Run" installation of Application support stuff?)
- Subject: Re: Moving wrappers w/SUID contained executables (Was: Re: "First Run" installation of Application support stuff?)
- From: Bill Bumgarner <email@hidden>
- Date: Thu, 19 Dec 2002 18:13:39 -0500
That changed over the last time I read the docs [back in the Xoptimize
days]....
On Thursday, Dec 19, 2002, at 18:04 US/Eastern, Finlay Dobbie wrote:
Apple says AuthorizationExecuteWithPrivileges() should be avoided,
it's only a temporary solution for "installers". See the AuthSample
code. Also, if you have MyPrivilegedTool in your application bundle,
and your application bundle is world writable, then anybody could
replace MyPrivilegedTool with EvilHardDiskEraserUtility, and AEWP()
would go blindly ahead and execute it without thinking twice. Not > good.
Not if you also checksum/sign the executable. Even then someone can
still co-opt the app and executable...
Clearly, a real solution needs to be created.
b.bum
_______________________________________________
cocoa-dev mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/cocoa-dev
Do not post admin requests to the list. They will be ignored.