changeset 11620:fa0fe50fe700

Add more references.
author Bruno Haible <bruno@clisp.org>
date Thu, 11 Jun 2009 19:15:42 +0200
parents af447a69e9d2
children c98fca1ff8b8
files ChangeLog lib/idpriv.h
diffstat 2 files changed, 15 insertions(+), 3 deletions(-) [+]
line wrap: on
line diff
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,7 @@
+2009-06-11  Bruno Haible  <bruno@clisp.org>
+
+	* lib/idpriv.h: Add more references.
+
 2009-06-08  Bruno Haible  <bruno@clisp.org>
 
 	Tests for module 'idpriv-droptemp'.
--- a/lib/idpriv.h
+++ b/lib/idpriv.h
@@ -72,9 +72,17 @@
    you should better stay away from this approach.
  */
 
-/* For more in-depth discussion of these topics, see the paper
-   Hao Chen, David Wagner, Drew Dean: Setuid Demystified
-   <http://www.usenix.org/events/sec02/full_papers/chen/chen.pdf>  */
+/* For more in-depth discussion of these topics, see the papers/articles
+   * Hao Chen, David Wagner, Drew Dean: Setuid Demystified
+     <http://www.usenix.org/events/sec02/full_papers/chen/chen.pdf>
+   * Dan Tsafrir, Dilma da Silva, David Wagner: The Murky Issue of Changing
+     Process Identity: Revising "Setuid Demystified"
+     <http://www.eecs.berkeley.edu/~daw/papers/setuid-login08b.pdf>
+     <http://code.google.com/p/change-process-identity/>
+   * Dhruv Mohindra: Observe correct revocation order while relinquishing
+     privileges
+     <https://www.securecoding.cert.org/confluence/display/seccode/POS36-C.+Observe+correct+revocation+order+while+relinquishing+privileges>
+ */
 
 
 /* For approach 2.  */