From owner-freebsd-hackers Thu Nov 28 01:58:34 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id BAA17633 for hackers-outgoing; Thu, 28 Nov 1996 01:58:34 -0800 (PST) Received: from zwei.siemens.at (zwei.siemens.at [193.81.246.12]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id BAA17620 for ; Thu, 28 Nov 1996 01:58:21 -0800 (PST) Received: from sol1.gud.siemens.co.at (root@[10.1.143.100]) by zwei.siemens.at (8.7.5/8.7.3) with SMTP id KAA16867 for ; Thu, 28 Nov 1996 10:57:26 +0100 (MET) Received: from ws2301.gud.siemens.co.at by sol1.gud.siemens.co.at with smtp (Smail3.1.28.1 #7 for ) id m0vT3Dq-00023QC; Thu, 28 Nov 96 10:57 MET Received: by ws2301.gud.siemens.co.at (1.37.109.16/1.37) id AA040424941; Thu, 28 Nov 1996 10:55:41 +0100 From: "Hr.Ladavac" Message-Id: <199611280955.AA040424941@ws2301.gud.siemens.co.at> Subject: Re: looking for an idea To: julian@whistle.com (Julian Elischer) Date: Thu, 28 Nov 1996 10:55:41 +0100 (MEZ) Cc: lada@ws2301.gud.siemens.co.at, wpaul@skynet.ctr.columbia.edu, terry@lambert.org, sprice@hiwaay.net, hackers@freebsd.org In-Reply-To: <329CBC11.59E2B600@whistle.com> from "Julian Elischer" at Nov 27, 96 02:09:21 pm X-Mailer: ELM [version 2.4 PL24 ME8a] Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk E-mail message from Julian Elischer contained: > Hr.Ladavac wrote: > > > > E-mail message from Julian Elischer contained: > > > Bill Paul wrote: > > > > > > > > > > > If YOU ( the server) are root.... > > > > > > make a file owned by them mode 400 > > > require them to open it and send you the file descriptor via AF_UNIX > > > > > > check it matches.. > > > if it does, then > > > 1/ the are themselves > > > or > > > 2/ they are root (game over) > > > > Or > > 3) they made a hard link, opened that, and sent you the > > file descriptor. > > hard links have the same ownership as the original! You're right--silly me :( > and only the owner can make one anyhow, so Not on HP-UX; anyone with the write access to any directory on the same filesystem can do it but it doesn't help them: they still have to be either root or the owner in order to open it or chmod it. So, yes, your solution is okay for the server-is-root case. Anyone sees some real problems with that? /Marino > they have to be the correct user to do this.... > > > > > The only protection agains that is a partition writable only > > by root where these files are to live--almost as bad as > > procfs. > > > > /Marino >