Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 9 Jul 1997 18:58:08 +0200 (CEST)
From:      Eivind Eklund <perhaps@yes.no>
To:        Robert Watson <robert@cyrus.watson.org>
Cc:        adam@homeport.org, freebsd-security@FreeBSD.ORG, tech@openbsd.org
Subject:   Re: Security Model/Target for FreeBSD or 4.4?
Message-ID:  <199707091658.SAA00433@bitbox.follo.net>
In-Reply-To: Robert Watson's message of Tue, 8 Jul 1997 11:45:57 -0400 (EDT)
References:  <199707080110.VAA21941@homeport.org> <Pine.BSF.3.95q.970708113714.4712A-100000@cyrus.watson.org>

next in thread | previous in thread | raw e-mail | index | archive | help
> With regards to gid vs. uid -- is either one of this preferable for any
> particular reason?  gid may be more flexible, I guess, as it would allow
> multiple users to bind the same ports, but without having rights to each
> others processes, and as such allow a simpler minimum configuration.

GIDs are (always?) preferable, as they don't allow overwrite of other
programs with the same setgid.  They don't even allow overwrite of the
same program, come to think of it :)
(Ref: `man' exploits)

Eivind.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199707091658.SAA00433>