[PATCH] ping: try SOCK_DGRAM if no root privileges
Denys Vlasenko
vda.linux at googlemail.com
Fri Jan 10 07:40:23 UTC 2014
On Thursday 09 January 2014 21:09, Laurent Bercot wrote:
> > It is not logical anymore to see root exploits as orders of magnitude
> > more dangerous than user-level ones, and spend much more efforts
> > to prevent specifically these exploits to be used.
> >
> > If you are afraid that ping may have a bug, spend time auditing ping,
> > not making it more ugly just because you can make such bug
> > impact "only lowly user".
>
> I understand what you're saying, and agree with it, but my point is
> that my solution:
>
> * isn't much more effort. I probably spent 5-10 minutes writing the
> additional 4 lines of C code.
Did you see the patch John Spencer sent me to make it actually work?
About three dozen more lines of code.
More information about the busybox
mailing list