Date: Sun, 19 Apr 1998 23:33:39 -0400 From: Marca Registrada <inf@nyef.res.cmu.edu> To: freebsd-security@FreeBSD.ORG Subject: Re: suid/sgid programs Message-ID: <19980419233339.41046@nyef.res.cmu.edu> In-Reply-To: <19980419190946.52003@mcs.net>; from Karl Denninger on Sun, Apr 19, 1998 at 07:09:46PM -0500 References: <199804200000.KAA16875@gsms01.alcatel.com.au> <19980419190946.52003@mcs.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Quoting Karl Denninger (karl@mcs.net): > Look at how System V "lp" handled this. Either you make the file > world-readable, or lp copied it (you had to tell it to do the second). Couldn't lpr figure this out for you.. or at least ask if you would like to make a (possibly interceptable) copy of the non-world-readable file for the paranoid/ Any comments on LPRng? I don't print much anymore, so I havn't used it in ages, but from wht I remember it passes data through sockets rahter tahn through passing files.. far more secure. -- - All we hear is internet gaagaa, internet googoo, internet gaagaa To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980419233339.41046>