"In the previous message, James R. Ault said..." > > > > Its a good idea to write a routine to scrub *ALL* LD_* environment > > varibles first thing in any SUID program. ESPECIALLY any that > > exec's another program with any kind of privilege. > > The LD_* variables don't affect statically linked binaries, do they? No, but the program the SUID program in turn execs may *not* be statically linked. I would put the scrubbing code in, on general principles, since it is small, and because the problem is in the programs the SUID process exec's, not in the SUID program itself (assuming the OS is operating properly). -- pat@rwing [If all fails, try: rwing!pat@eskimo.com] Pat Myrto - Seattle WA "No one has the right to destroy another person's belief by demanding empirical evidence." -- Ann Landers, nationally syndicated advice columnist and Director at Handgun Control Inc.