From a07e33702049d63adb06271e4d15412685b44085 Mon Sep 17 00:00:00 2001
From: Brent Cook <bcook@openbsd.org>
Date: Tue, 29 Jul 2014 18:21:58 -0500
Subject: include comment on windows services

---
 crypto/compat/issetugid_win.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/crypto/compat/issetugid_win.c b/crypto/compat/issetugid_win.c
index 7602a9b..d0c598d 100644
--- a/crypto/compat/issetugid_win.c
+++ b/crypto/compat/issetugid_win.c
@@ -14,6 +14,11 @@
  * However, it makes sense to stub out initially in 'safe' mode until we
  * understand more (and determine if any disabled functionality is actually
  * useful on Windows anyway).
+ *
+ * Future versions of this function that are made more 'open' should thoroughly
+ * consider the case of this code running as a privileged service with saved
+ * user credentials or privilege escalations by other means (e.g. the old
+ * RunAsEx utility.)
  */
 int issetugid(void)
 {
-- 
cgit v1.2.3-55-g6feb