From owner-freebsd-hackers@FreeBSD.ORG Tue Jun 5 21:42:36 2012 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E6F30106564A for ; Tue, 5 Jun 2012 21:42:36 +0000 (UTC) (envelope-from bryan@shatow.net) Received: from secure.xzibition.com (secure.xzibition.com [173.160.118.92]) by mx1.freebsd.org (Postfix) with ESMTP id 71E3D8FC12 for ; Tue, 5 Jun 2012 21:42:36 +0000 (UTC) DomainKey-Signature: a=rsa-sha1; c=nofws; d=shatow.net; h=message-id :date:from:mime-version:to:cc:subject:references:in-reply-to :content-type; q=dns; s=sweb; b=NrQWRk4+3X4Ob9fVxEYrcxoVL1tjVRxA gPCSlCp2JMgGSD+krXlpnEERURteQaHwQVNxHSOgd119tDzkny3TaJfS03mxF9wX bg/SfbQ6iKaaHxgSQNSjz1gPXADdlqghrx5U/FgfetxBLRNNvE4TlH2cEVIPPxV4 6Kop/lqU638= DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=shatow.net; h=message-id :date:from:mime-version:to:cc:subject:references:in-reply-to :content-type; s=sweb; bh=CZoaZo83f7pB3rwZzXnRXWQfwsyGwUWLS2Plg9 zQjdE=; b=zlo4J8JZ3YR6xqH15Vz72KvMA/HNtR6zfqI8p6jWAhr0arKL7FTj6l Ijx8cyJsi8VxkwegaOhrqVy8rURxs4nWS6ga6pBgeS7ctzFZyFjQ4tQZJ5hLh5ac 2/bqJYBXUYv9hx5H0a1229v4TDxiC3F3/3QUXzScqstrJLoPXxfIA= Received: (qmail 36522 invoked from network); 5 Jun 2012 16:42:34 -0500 Received: from unknown (HELO ?192.168.21.109?) (bryan@shatow.net@74.94.87.209) by sweb.xzibition.com with ESMTPA; 5 Jun 2012 16:42:34 -0500 Message-ID: <4FCE7D4C.7010702@shatow.net> Date: Tue, 05 Jun 2012 16:42:36 -0500 From: Bryan Drewery User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20120428 Thunderbird/12.0.1 MIME-Version: 1.0 To: Jilles Tjoelker References: <4FCC126C.1020600@shatow.net> <20120605213101.GA13339@stack.nl> In-Reply-To: <20120605213101.GA13339@stack.nl> X-Enigmail-Version: 1.4.1 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig96174B77C8C6AF3CEC499B58" Cc: freebsd-hackers@freebsd.org Subject: Re: [RFC] last(1) with security.bsd.see_other_uids support X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jun 2012 21:42:37 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig96174B77C8C6AF3CEC499B58 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 6/5/2012 4:31 PM, Jilles Tjoelker wrote: > To avoid this, the utmpx APIs could communicate with a privileged daemo= n > if the files are not readable. The daemon can check the identity of the= > caller via getpeereid(3). (Unfortunately, even if getpeereid() is > bypassed and LOCAL_PEERCRED called directly, only 16 groups can be > queried. Therefore the daemon cannot check the process credential for > the groups but will have to check the group database for the user.) >=20 > Also, the attack surface of such a daemon may be smaller than that of a= > setuid/setgid program. >=20 > Alternatively, the daemon could be a setgid program that is spawned by > the utmpx APIs when needed. I like this idea a lot. I will experiment with that. --=20 Regards, Bryan Drewery bdrewery@freenode, bryan@EFNet --------------enig96174B77C8C6AF3CEC499B58 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJPzn1QAAoJEG54KsA8mwz5wYIQAIPe9MAiejKXJOufsxtbsy5W iyJ2Kqg5quwCQhMoKtDgTXGz62T2DAK2JXuJ9eH4h2jkBk25ljtnCLfuejBtG3+A 2sbA5JnraJG7MMTs9ORblTtLGJtBLQ9wg4ckmwmwGTgTFaXNQwLWe6fd0eJHKOMe UCzceWmAEdBJ9PTPON82uUpF7kTfAIFl6xuMA4CEnQShH94msFToWqbJuN68lfGz +ZaFadcZNZJg1KYqdxwbhCNQ5YxpG12RwraDdqn07BptLp1TgAUVA1sqC6u08gM4 3tIJTQ1Toy59B3BrtpRKXWe/p1KZXLTXkeTf5X02z6Mrfa37V+FzaZE5pMSvJ4Q7 lU/q0iJXzqBbuhaNc1/dyNTlResZfXKx7m0pNeN/Wwem1ojCvV1LtXntekaANyi1 fk8/CSpiYZ9+mXa93G4g2NlJjhMdbnoEy+f3xAjF9xIyMcqjJI2nGiRn3oXTfnRE xClTPyI2ykr1nR+kqum6928XDkfzr8CUC1rfVWZyeIEdLCmca3oQnwwy/muj9cZA MThCs0q9wCoVPHmfJbZdwojHa9UvMtAMJ9eK1iGfug1mFS7pqG1lOWUlHASzR+FK PhdogztNLuIY5LNH8KQEyW0iUdVBFPTWPket7tSiszQi1LFN4Q4ogMegisKx7JqI 0avT4louipO8LpSEKIGg =5oqN -----END PGP SIGNATURE----- --------------enig96174B77C8C6AF3CEC499B58--