From 7f38abfbdb57b4ed33fa0aaacdfe7414d4c19a28 Mon Sep 17 00:00:00 2001
From: Andrew Tridgell <tridge@samba.org>
Date: Tue, 20 Aug 1996 15:40:32 +0000
Subject: add a bit more about the "trapdoor uid" messsage (This used to be
 commit 52af2b38fe91e4a993395bfc20a8ab81e6da04c1)

---
 docs/samba.faq | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'docs')

diff --git a/docs/samba.faq b/docs/samba.faq
index 1e8ea6e3c1..de5c16c5c6 100644
--- a/docs/samba.faq
+++ b/docs/samba.faq
@@ -434,6 +434,11 @@ the guest user.
 
 Complain to your OS vendor and ask them to fix their system.
 
+Note: the reason why 65535 is a VERY bad choice of uid and gid is that
+it casts to -1 as a uid, and the setreuid() system call ignores (with
+no error) uid changes to -1. This means any daemon attempting to run
+as uid 65535 will actually run as root. This is not good!
+
 ===============================================================================
 SECTION FOUR: Specific client problems
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-- 
cgit