diff options
author | Joakim Tjernlund <joakim.tjernlund@transmode.se> | 2004-10-06 11:34:32 +0000 |
---|---|---|
committer | Joakim Tjernlund <joakim.tjernlund@transmode.se> | 2004-10-06 11:34:32 +0000 |
commit | 80c6a0958a927706d8dffd81301511c83289496f (patch) | |
tree | 62d8116a643e202b5b9eabc888e53df0b0e65a03 /ldso/include/unsecvars.h | |
parent | 9f9ab4922338d58f5adf8353286039eae09e1c2f (diff) |
Peter S. Mazinger writes:
Hello!
Here is the modified unsecvars patch that applies to cvs.
Diffstat (limited to 'ldso/include/unsecvars.h')
-rw-r--r-- | ldso/include/unsecvars.h | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/ldso/include/unsecvars.h b/ldso/include/unsecvars.h new file mode 100644 index 000000000..5380f7363 --- /dev/null +++ b/ldso/include/unsecvars.h @@ -0,0 +1,26 @@ +/*
+ * Environment variable to be removed for SUID programs. The names are all
+ * stuffed in a single string which means they have to be terminated with a
+ * '\0' explicitly.
+ */
+
+#define UNSECURE_ENVVARS \
+ "LD_AOUT_PRELOAD\0" \
+ "LD_AOUT_LIBRARY_PATH\0" \
+ "LD_PRELOAD\0" \
+ "LD_LIBRARY_PATH\0" \
+ "LD_DEBUG\0" \
+ "LD_DEBUG_OUTPUT\0" \
+ "HOSTALIASES\0" \
+ "LOCALDOMAIN\0" \
+ "RES_OPTIONS\0" \
+ "TMPDIR\0"
+
+/*
+ * These environment variables are defined by glibc but ignored in
+ * uClibc, but may very well have an equivalent in uClibc.
+ *
+ * MALLOC_TRACE, RESOLV_HOST_CONF, TZDIR, GCONV_PATH, LD_USE_LOAD_BIAS,
+ * LD_PROFILE, LD_ORIGIN_PATH, LOCPATH, NLSPATH
+ */
+
|