From owner-cvs-src Fri Feb 21 5:21:37 2003 Delivered-To: cvs-src@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DBBA337B401; Fri, 21 Feb 2003 05:21:35 -0800 (PST) Received: from harmony.village.org (rover.bsdimp.com [204.144.255.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 761C743FAF; Fri, 21 Feb 2003 05:21:34 -0800 (PST) (envelope-from imp@bsdimp.com) Received: from localhost (warner@rover2.village.org [10.0.0.1]) by harmony.village.org (8.12.6/8.12.3) with ESMTP id h1LDLX3Y061200; Fri, 21 Feb 2003 06:21:33 -0700 (MST) (envelope-from imp@bsdimp.com) Date: Fri, 21 Feb 2003 06:20:59 -0700 (MST) Message-Id: <20030221.062059.34122968.imp@bsdimp.com> To: ru@FreeBSD.org Cc: cjc@FreeBSD.org, src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/netinet in_pcb.c From: "M. Warner Losh" In-Reply-To: <20030221131205.GE30966@sunbay.com> References: <200302210528.h1L5SS0H092948@repoman.freebsd.org> <20030221131205.GE30966@sunbay.com> X-Mailer: Mew version 2.1 on Emacs 21.2 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-cvs-src@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG One implication of this is that if you have a server running on a used-to-be priviledged port and now run it on a no-privs port your machine has more potential for compromise. If an attacker can make that server die, and has an accaount on your machine, that attacker can replace the daemon with his own by winning the restart race. With priviledged ports, root was the only one that mattered. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-src" in the body of the message