From owner-freebsd-security  Tue Mar 20 18:25:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from ego.mind.net (ego.mind.net [206.99.66.9])
	by hub.freebsd.org (Postfix) with ESMTP
	id 2AD9E37B71C; Tue, 20 Mar 2001 18:25:36 -0800 (PST)
	(envelope-from takhus@takhus.mind.net)
Received: from takhus.dyn.mind.net (AFN-Dyn-2084622070.pc.ashlandfiber.net [208.46.220.70])
	by ego.mind.net (8.9.3/8.9.3) with ESMTP id SAA19471;
	Tue, 20 Mar 2001 18:15:19 -0800
Received: from localhost (fleisher@localhost)
	by takhus.dyn.mind.net (8.11.3/8.11.3) with ESMTP id f2L2FJp18281;
	Tue, 20 Mar 2001 18:15:19 -0800 (PST)
	(envelope-from takhus@takhus.mind.net)
X-Authentication-Warning: takhus.dyn.mind.net: fleisher owned process doing -bs
Date: Tue, 20 Mar 2001 18:15:19 -0800 (PST)
From: Tony Fleisher <takhus@takhus.mind.net>
X-Sender: fleisher@takhus.dyn.mind.net
To: Brett Glass <brett@lariat.org>
Cc: Sergey Babkin <babkin@bellatlantic.net>, security@FreeBSD.ORG,
	fs@FreeBSD.ORG, arch@FreeBSD.ORG
Subject: Re: about common group & user ID space (PR kern/14584)
In-Reply-To: <4.3.2.7.2.20010320002008.00d12b50@localhost>
Message-ID: <Pine.BSF.4.21.0103201810590.16744-100000@takhus.dyn.mind.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Tue, 20 Mar 2001, Brett Glass wrote:

> At 06:15 PM 3/19/2001, Sergey Babkin wrote:
> 
> >> > on (a) the number of groups of which a user can be a member and (b) the
> >
> >For this there is some macro (can't remember the name) which
> >can be defined in the kernel config file as an option with
> >a higher value. Setting it higher means higher system overhead
> >but since the memory size has increased significantly over
> >the last few years, I think that a higher default value makes
> >sense.
> 
> I do too. Could you submit this as a patch?
> 
> >I think there is such a limit. Or at least it was in the 2.0.5 days.
> >I'm not sure about the line length limit. I remember that there
> >was such a limit in SVR4.2, so if a group line grew past some size,
> >getgrent() and friends went crazy.
> 
> I believe that it was between 100 and 130 when it lost it. Don't
> know if it was the number of characters or the number of users.
> 
> [details about a workaround and adduser breakage removed]

I believe that the limit on the length of a line in the group
file was removed prior to 3.0-RELEASE.

See revision 1.14 of src/lib/libc/gen/getgrent.c by wosch.
http://www.FreeBSD.org/cgi/cvsweb.cgi/src/lib/libc/gen/getgrent.c

Regards,

Tony.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message