From owner-freebsd-security Sat Sep 8 19:10:22 2001 Delivered-To: freebsd-security@freebsd.org Received: from obsecurity.dyndns.org (adsl-63-207-60-54.dsl.lsan03.pacbell.net [63.207.60.54]) by hub.freebsd.org (Postfix) with ESMTP id 1B45737B401; Sat, 8 Sep 2001 19:10:14 -0700 (PDT) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id AEC1866D0A; Sat, 8 Sep 2001 19:10:13 -0700 (PDT) Date: Sat, 8 Sep 2001 19:10:13 -0700 From: Kris Kennaway To: "Andrey A. Chernov" Cc: Kris Kennaway , "Todd C. Miller" , Matt Dillon , Jordan Hubbard , security@FreeBSD.ORG, audit@FreeBSD.ORG Subject: Re: Fwd: Multiple vendor 'Taylor UUCP' problems. Message-ID: <20010908191013.B5881@xor.obsecurity.org> References: <200109082103.f88L3fK29117@earth.backplane.com> <20010908154617.A73143@xor.obsecurity.org> <20010908170257.A82082@xor.obsecurity.org> <20010908174304.A88816@xor.obsecurity.org> <20010909045226.A33654@nagual.pp.ru> <20010908180848.A94567@xor.obsecurity.org> <200109090120.f891KvM14677@xerxes.courtesan.com> <20010909054457.A34319@nagual.pp.ru> <20010908185602.B5619@xor.obsecurity.org> <20010909060144.B34519@nagual.pp.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="1LKvkjL3sHcu1TtY" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010909060144.B34519@nagual.pp.ru>; from ache@nagual.pp.ru on Sun, Sep 09, 2001 at 06:01:44AM +0400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --1LKvkjL3sHcu1TtY Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Sep 09, 2001 at 06:01:44AM +0400, Andrey A. Chernov wrote: > On Sat, Sep 08, 2001 at 18:56:02 -0700, Kris Kennaway wrote: > >=20 > > That doesn't protect NFS-mounted systems, and doesn't prevent >=20 > Don't have ideas about NFS. Is schg not works there? Actually, I think I was overstating a bit. You can't set UFS file flags on an NFS volume, but they should work fine if already set on the server and /usr is mounted by a client. What will break is trying to do an installworld onto a remote NFS volume, or installworld within a jail, since in order for that to succeed you have to tell it not to set file flags, and that will leave you with a local root exploit on the installed system. > > arbitrary users from reading/modifying the UUCP spool files. >=20 > It is bad design of UUCP, it is not our problem. Moreover, it can't be > fixed easily without total UUCP redesign. See my prev. message explaining > it more. Fair enough. Kris --1LKvkjL3sHcu1TtY Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7ms+FWry0BWjoQKURAn+QAJ9y0f+N+136QeDZwgWTZeY+glk8qwCg5B3a sC89TS409DO7yOcnIRXGvbs= =Jt6o -----END PGP SIGNATURE----- --1LKvkjL3sHcu1TtY-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message