Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.1 6/24/83; site utcsstat.UUCP
Path: utzoo!utcsrgv!utcsstat!laura
From: laura@utcsstat.UUCP (Laura Creighton)
Newsgroups: net.unix-wizards
Subject: Re: Protecting games
Message-ID: <1105@utcsstat.UUCP>
Date: Sat, 24-Sep-83 21:41:41 EDT
Article-I.D.: utcsstat.1105
Posted: Sat Sep 24 21:41:41 1983
Date-Received: Sat, 24-Sep-83 22:33:11 EDT
References: <11812@sri-arpa.UUCP>
Organization: U. of Toronto, Canada
Lines: 14

Why don't you just set the uid and gid bits before execl'ing the shell?

ie:

		setgid(getgid()&IDMASK);
		setuid(getuid()&IDMASK);
		execl(sh == NULL ? "/bin/sh" : sh, "sh", "-i", 0);
		perror("No shell.");
		exit(-1);

it seems a lot better than kacking your kernel.

laura creighton
utzoo!utcsstat!laura