{"id":4,"date":"2006-08-10T09:19:21","date_gmt":"2006-07-27T16:55:53","guid":{"rendered":""},"modified":"2017-03-07T16:21:43","modified_gmt":"2017-03-07T16:21:43","slug":"setuid_time_bombs","status":"publish","type":"post","link":"https:\/\/blogs.gentoo.org\/frilled\/2006\/08\/10\/setuid_time_bombs\/","title":{"rendered":"setuid() time bombs"},"content":{"rendered":"<p>When the setuid() bug hit vixie-cron I was sure we were going to have a lot more of those exploits in the near future. It seems I was too pessimistic, though; there were only one or two discovered since then, although I think auditors will keep an eye on that from now on. Anyway, I&#8217;d like to recommend some (IMHO) good reading:<\/p>\n<p>http:\/\/www.csl.sri.com\/users\/ddean\/papers\/usenix02.pdf<\/p>\n<p>Update: Next in line is mit-krb5 &#8230; more to come, I guess \ud83d\ude41<\/p>\n","protected":false},"excerpt":{"rendered":"<p>When the setuid() bug hit vixie-cron I was sure we were going to have a lot more of those exploits in the near future. It seems I was too pessimistic, though; there were only one or two discovered since then, although I think auditors will keep an eye on that from now on. Anyway, I&#8217;d &hellip; <a href=\"https:\/\/blogs.gentoo.org\/frilled\/2006\/08\/10\/setuid_time_bombs\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">setuid() time bombs<\/span><\/a><\/p>\n","protected":false},"author":49,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/posts\/4"}],"collection":[{"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/users\/49"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/comments?post=4"}],"version-history":[{"count":1,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/posts\/4\/revisions"}],"predecessor-version":[{"id":19,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/posts\/4\/revisions\/19"}],"wp:attachment":[{"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/media?parent=4"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/categories?post=4"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.gentoo.org\/frilled\/wp-json\/wp\/v2\/tags?post=4"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}