[mythtv] [PATCH] security update for realtime priority
Doug Larrick
doug at ties.org
Tue Nov 2 23:43:49 UTC 2004
Matt Zimmerman wrote:
> Also, the setuid(getuid()) should be the first thing after setting the
> capabilities. True, the privileged thread shouldn't actually do anything
> until after the process has dropped its uid, but it's good practice to do it
> as early as possible for safety with future code changes. This also avoids
> any ambiguity with threads and uid changes.
That didn't work for me. Didn't have permission to do the
pthread_setschedparam. I think dropping root also drops the capability.
-Doug
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 256 bytes
Desc: OpenPGP digital signature
Url : http://mythtv.org/pipermail/mythtv-dev/attachments/20041102/be54a990/signature.pgp
More information about the mythtv-dev
mailing list