[GRASS5] Objections to release 5.0.0stable?
Bernhard Reiter
bernhard at intevation.de
Fri Aug 9 04:40:40 EDT 2002
On Thu, Aug 08, 2002 at 11:50:32PM -0700, Eric G. Miller wrote:
> On Fri, Aug 09, 2002 at 07:00:40AM +0100, Glynn Clements wrote:
> > > But, I personally would be very cautious about using GRASS in
> > > a setting where security concerns are high. I guarantee some
> > > tricky hacker could find a way to create a buffer overflow if
> > > given a chance...
> >
> > Well, GRASS doesn't include any setuid programs, it doesn't provide
> > any network services, and the /tmp/grass-<user> directory which
> > contains the monitor sockets should be mode 700.
> >
> > However, I wouldn't recommend running any GRASS module on
> > untrustworthy data, including accessing a world-writable database
> > (GISDBASE) directory on a system which has untrusted users.
> > GRASS isn't secure. Actually, it's the opposite of secure. You
> > wouldn't need to bother with a buffer overflow; exploiting one of the
> > many unsafe calls to system() would be easier.
>
> Yea, I was mostly thinking of the scenario where GRASS might be run with
> elevated priveledges.
Maybe we should add a statement to the readmes explaining that
GRASS should not be run with priviledges.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.osgeo.org/pipermail/grass-dev/attachments/20020809/b53239b5/attachment.bin
More information about the grass-dev
mailing list