call setgroups() before setuid()

steve-o / openpgm

Automatically exported from code.google.com/p/openpgm

57 stars 44 forks source link

call setgroups() before setuid() #42

Closed ktdreyer closed 8 years ago

ktdreyer commented 8 years ago

When dropping privileges from root, the setgroups call will remove any extraneous groups. If we don't call this, then even though our uid has dropped, we may still have groups that enable us to do super-user things.

Fixes #36

ktdreyer commented 8 years ago

patch is in master already as 040f22352a0663ad1e68f2960fdcddc95f8174ad ; closing