[Systrace] suid programs

[Niels Provos]

On Mon, May 02, 2005 at 08:09:03PM +0200, Johannes Nicolai wrote:
> Is there any way to determine if the program that should be executed with 
> execv /... is an suid program?

Systrace itself does not know if an application is sugid.  Presumably,
you could check via userland but that leads to TOCTOU problems. Kernel
support could help with that.  But presumably, sugid applications are
not lying around randomly on the system.

Niels.