Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!uwm.edu!spool2.mu.edu!uunet!unisoft!aegl
From: aegl@unisoft.UUCP (Tony Luck)
Newsgroups: comp.unix.admin
Subject: Re: (C News) (u)limit filesize and inews
Message-ID: <3287@unisoft.UUCP>
Date: 8 Jan 91 19:00:31 GMT
References: <27839439.1746@ics.uci.edu> <1991Jan3.214226.9184@zoo.toronto.edu> <1991Jan6.041145.22955@wolves.uucp>
Organization: UniSoft Corporation -- UNIX R Us.
Lines: 15

>>trouble coping with such stupid impositions.  It would make a whole lot
>>more sense if the kernel disabled such limits for setuid programs.  The
>>list of things that setuid programs have to worry about is already
>>excessively long; we don't need gratuitous additions to it courtesy of
>>stupid implementors.

System V Release 4.0 does exactly this ... the exec code will reset all
resource limits back to the system defaults (the versions that I have been
near avoid reducing any limit). I haven't seen this documented anywhere
though. Administrators who rely on setting a high limit, and lowering it
in /etc/profile for certain clases of users may be surprised that users
can bypass the limits ... if two of them cooperate and give each other setuid
programs.

-Tony Luck <aegl@unisoft.com>