Re: [PATCH] Introduce O_CLOEXEC (take >2)
- From: Ulrich Drepper <drepper@xxxxxxxxxx>
- Date: Thu, 31 May 2007 11:53:51 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 05/31/2007 Davide Libenzi wrote:
I was talking for a broader usage, not only glibc centric. Most ppl
writing MT+exec apps wants all but (eventually) and handfull of files
leaking across the exec boundary.
Policies are not the answer. Using such a flag is no big issue. *Iff*
we should end up with some form of private file descriptors changing the
default for them would be OK, too. But the existing semantics mustn't
be touched, even if it is selectable. Trying to fix existing buggy code
this way is foolish since it might just as well break assumptions in the
same program.
- --
➧ Ulrich Drepper ➧ Red Hat, Inc. ➧ 444 Castro St ➧ Mountain View, CA ❖
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
iD8DBQFGXxm/2ijCOnn/RHQRAm+wAJ9YD6KsS6T96xChZvS/3yCwCo6+0gCgl0IY
y6OxxUcuQ8yGJsiYebkuIMY=
=tkxV
-----END PGP SIGNATURE-----
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
- References:
- [PATCH] Introduce O_CLOEXEC (take >2)
- From: Ulrich Drepper
- Re: [PATCH] Introduce O_CLOEXEC (take >2)
- From: Davide Libenzi
- Re: [PATCH] Introduce O_CLOEXEC (take >2)
- From: Ulrich Drepper
- Re: [PATCH] Introduce O_CLOEXEC (take >2)
- From: Davide Libenzi
- [PATCH] Introduce O_CLOEXEC (take >2)
- Prev by Date: Re: 2.6.22-rc3-mm1
- Next by Date: Re: [PATCH] ACPI Debug - for test, devel and possibly even for production kernels
- Previous by thread: Re: [PATCH] Introduce O_CLOEXEC (take >2)
- Next by thread: Re: [PATCH] Introduce O_CLOEXEC (take >2)
- Index(es):
Relevant Pages
- RE: How to block users from installing other apps
... > Through Group Policies in Acitve Directory or Local Policies ... Last time
I did this was on a Windows ... an easy way around this would be to rename AIM.exe
... *Some* apps may not even be things that users realize are ... (Focus-Microsoft) - RE: Port and File-Blocking Best Practices
... auditing logs to see which apps are using which ports. ... policies
for CIFS/SMB but don't know if it's a good idea. ... Which file extensions should be monitored
for ... (microsoft.public.win2000.security) - Re: [PATCH] Introduce O_CLOEXEC (take >2)
... Davide Libenzi wrote: ... apps wants all their fds (but an handfull,
... (Linux-Kernel) - AD security
... design I wanted to carry out and instead implementing the security ... policies
through GPO's so there is only one published app on Citrix. ... have AD locked down (specified
which apps to run (did the only run ... (Security-Basics)
