Uploaded image for project: 'Mesos'
  1. Mesos
  2. MESOS-6504

Use 'geteuid()' for the root privileges check.

Attach filesAttach ScreenshotVotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Mesosphere Sprint 47, Mesosphere Sprint 48, Mesosphere Sprint 50
    • 3

    Description

      Currently, parts of code in Mesos check the root privileges using os::user() to compare to "root", which is not sufficient, since it compares the real user. When people change the mesos binary by 'setuid root', the process may not have the right permission to execute.

      We should check the effective user id instead in our code.

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            gilbert Gilbert Song
            gilbert Gilbert Song
            Jie Yu Jie Yu
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Agile

                Completed Sprints:
                Mesosphere Sprint 47 ended 08/Dec/16
                Mesosphere Sprint 48 ended 07/Jan/17
                Mesosphere Sprint 50 ended 04/Feb/17
                View on Board

                Slack

                  Issue deployment