[Distutils] entry point for new installations?
Kevin Dangoor
dangoor at gmail.com
Mon Mar 20 23:55:47 CET 2006
On 3/20/06, Phillip J. Eby <pje at telecommunity.com> wrote:
> Yeah, and this latter exchange has convinced me that it's the only simple
> way to avoid privilege escalation attacks. That is, it doesn't require
> low/medium-privilege server processes to be able to write stuff (like entry
> point code, pids, or configuration files) that gets read or executed (or
> otherwise relied upon) by the high-privilege installation process.
Excellent point. Clearly, I hadn't thought of privilege escalation...
Kevin
More information about the Distutils-SIG
mailing list