From owner-freebsd-hackers  Wed Aug 18 15:37:54 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from apollo.backplane.com (apollo.backplane.com [209.157.86.2])
	by hub.freebsd.org (Postfix) with ESMTP id B82E115000
	for <hackers@FreeBSD.ORG>; Wed, 18 Aug 1999 15:37:43 -0700 (PDT)
	(envelope-from dillon@apollo.backplane.com)
Received: (from dillon@localhost)
	by apollo.backplane.com (8.9.3/8.9.1) id PAA49807;
	Wed, 18 Aug 1999 15:37:51 -0700 (PDT)
	(envelope-from dillon)
Date: Wed, 18 Aug 1999 15:37:51 -0700 (PDT)
From: Matthew Dillon <dillon@apollo.backplane.com>
Message-Id: <199908182237.PAA49807@apollo.backplane.com>
To: Warner Losh <imp@village.org>
Cc: David Scheidt <dscheidt@enteract.com>,
	Garance A Drosihn <drosih@rpi.edu>,
	Matthew Dillon <dillon@apollo.backplane.com>, hackers@FreeBSD.ORG
Subject: Re: lpd security check for changed-file vs NFS 
References: <Pine.NEB.3.96.990818084611.33224A-100000@shell-2.enteract.com>   <199908182233.QAA27771@harmony.village.org>
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

:For the general case (eg the code checked into the system), the check
:needs to remain enabled.  Anything else is insecure.
:
:Warner

    I have to agree... whenever one starts discussing weird, esoteric 
    workarounds one inevitably introduces security holes.  I really think 
    just disabling the -s option may be the best solution.

    Garance:  I recommend you actually check to see how big your printer spools
    get.  If they look reasonable then turning off -s is not going to hurt
    anything.  I expect that most users don't even know the option exists and
    so don't use it anyway.

					-Matt
					Matthew Dillon 
					<dillon@backplane.com>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message