SOURCES: openldap-setugid.patch (NEW) - from FC: Don't read the us...
glen
glen at pld-linux.org
Wed Mar 1 20:51:59 CET 2006
Author: glen Date: Wed Mar 1 19:51:59 2006 GMT
Module: SOURCES Tag: HEAD
---- Log message:
- from FC: Don't read the user's configuration file if we're running in a setuid or setgid application.
---- Files affected:
SOURCES:
openldap-setugid.patch (NONE -> 1.1) (NEW)
---- Diffs:
================================================================
Index: SOURCES/openldap-setugid.patch
diff -u /dev/null SOURCES/openldap-setugid.patch:1.1
--- /dev/null Wed Mar 1 20:51:59 2006
+++ SOURCES/openldap-setugid.patch Wed Mar 1 20:51:54 2006
@@ -0,0 +1,23 @@
+Don't read the user's configuration file if we're running in a setuid
+or setgid application.
+--- openldap-2.2.13/libraries/libldap/init.c 2004-06-15 11:51:32.000000000 -0400
++++ openldap-2.2.13/libraries/libldap/init.c 2004-06-15 13:42:35.000000000 -0400
+@@ -551,10 +551,11 @@
+ if( user != NULL ) {
+ gopts->ldo_def_sasl_authcid = user;
+ }
+- }
++ }
+ #endif
+
+ openldap_ldap_init_w_sysconf(LDAP_CONF_FILE);
++ if( ( getuid() == geteuid() ) && ( getgid() == getegid() ) ) {
+ openldap_ldap_init_w_userconf(LDAP_USERRC_FILE);
+
+ {
+@@ -608,4 +609,5 @@
+ }
+
+ openldap_ldap_init_w_env(gopts, NULL);
++ }
+ }
================================================================
More information about the pld-cvs-commit
mailing list