From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1E7OMC-0006gk-14 for garchives@archives.gentoo.org; Tue, 23 Aug 2005 02:17:44 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j7N2GLdb024951; Tue, 23 Aug 2005 02:16:21 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j7N2GLCx024261 for ; Tue, 23 Aug 2005 02:16:21 GMT Received: from cpe-65-26-255-237.wi.res.rr.com ([65.26.255.237] helo=nightcrawler) by smtp.gentoo.org with esmtpa (Exim 4.43) id 1E7OLc-0000Cv-FK for gentoo-portage-dev@lists.gentoo.org; Tue, 23 Aug 2005 02:17:08 +0000 Date: Mon, 22 Aug 2005 21:15:57 -0500 From: Brian Harring To: gentoo-portage-dev@lists.gentoo.org Subject: Re: [gentoo-portage-dev] Re: Environment Whitelisting Message-ID: <20050823021557.GZ10816@nightcrawler> References: <4308E349.8010107@egr.msu.edu> <20050822035207.GA26017@phaenix.haell.com> <200508222352.13913.jstubbs@gentoo.org> <430A149D.1050907@gmail.com> <430A2453.5050008@egr.msu.edu> <430A265D.8090907@gmail.com> <1124762266.6502.92.camel@localhost> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-portage-dev@gentoo.org Reply-to: gentoo-portage-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="KIbT1ud6duwZIwNL" Content-Disposition: inline In-Reply-To: <1124762266.6502.92.camel@localhost> User-Agent: Mutt/1.5.8i X-Archives-Salt: 62f52eeb-16b6-45ae-af4b-4436afd97c86 X-Archives-Hash: f9233a230809ca28fd38d70a77e5d603 --KIbT1ud6duwZIwNL Content-Type: text/plain; charset=utf8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Aug 22, 2005 at 09:57:46PM -0400, Kristian Benoit wrote: > On Mon, 2005-08-22 at 12:24 -0700, Zac Medico wrote: > > AFAIK we can intercept getenv() calls the same way that we intercept fi= lesystem calls. IMO the white/black/override lists would best be implement= ed at this level. > > getenv is'nt a system call. Nor is glibc's open call, although it hands off to a syscall . LD_PRELOAD just inserts (essentially) it's functions into the symbol=20 resolution order; your symbols get used rather then those from the=20 lib. It's possible, I just don't like it. :) ~harring --KIbT1ud6duwZIwNL Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDCobdvdBxRoA3VU0RAi8mAKCjXc7EsGWKDjSIdfZGSc7nqMl/PQCgmFmf nVTULbfRB/xqyVOotPq7GAc= =hUKF -----END PGP SIGNATURE----- --KIbT1ud6duwZIwNL-- -- gentoo-portage-dev@gentoo.org mailing list