Date: Mon, 16 Feb 1998 15:42:05 +1100 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: Obi Wan Oblivion <vdk@chaosphere.com> Cc: hackers@FreeBSD.ORG Subject: Re: IIJPPP & The Root User Message-ID: <Pine.BSF.3.91.980216153909.294q-100000@panda.hilink.com.au> In-Reply-To: <Pine.BSF.3.96.980215230330.691A-100000@logrus.chaosphere.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 15 Feb 1998, Obi Wan Oblivion wrote: > Any reason why I shouldn't modify IIJPPP Version 1.2 (built on 9/23/97) to > allow uids other than zero to dialout? Being able to dial out means being able to change the routing table; the entry of most concern is the default route. > < if(getuid() != 0) > > > if((getuid() != 0) || (getgid() != 68)) Getting the group's name and comparing it to dialer would be better. You may want to look at preventing altering the default root and only allowing addition of the host route if(getuid() != 0). Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.980216153909.294q-100000>