summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTheo de Raadt <deraadt@cvs.openbsd.org>2005-12-07 19:12:21 +0000
committerTheo de Raadt <deraadt@cvs.openbsd.org>2005-12-07 19:12:21 +0000
commit2c820ddb4cce0d2fa79ec6c190db8a2b33086a13 (patch)
tree36d74b62a3743dcb54335614b7106ee82fb5c6e0
parent8f1d90b946f44f94a3a5b2794d6029dd15bfeca5 (diff)
document how /dev/fd/# works for setuid (do not bother discussing setuid shell scripts though)
-rw-r--r--share/man/man4/fd.410
1 files changed, 9 insertions, 1 deletions
diff --git a/share/man/man4/fd.4 b/share/man/man4/fd.4
index b626c377455..017e8f4adb5 100644
--- a/share/man/man4/fd.4
+++ b/share/man/man4/fd.4
@@ -1,4 +1,4 @@
-.\" $OpenBSD: fd.4,v 1.5 2003/06/02 23:30:12 millert Exp $
+.\" $OpenBSD: fd.4,v 1.6 2005/12/07 19:12:20 deraadt Exp $
.\" $NetBSD: fd.4,v 1.3 1994/11/30 16:22:13 jtc Exp $
.\"
.\" Copyright (c) 1990, 1991, 1993
@@ -78,6 +78,14 @@ call other than
and
.Dv O_RDWR
are ignored.
+.Pp
+These devices may not be opened by processes which are tainted
+as a result of setuid or setgid behaviours, as documented in
+.Xr issetugid 2 .
+In those cases, an error return will occur with
+.Va errno
+set to
+.Dv EPERM .
.Sh FILES
.Bl -tag -width /dev/stderr -compact
.It Pa /dev/fd/#