From owner-freebsd-bugs  Tue Apr 16 07:37:34 1996
Return-Path: owner-bugs
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id HAA15907
          for bugs-outgoing; Tue, 16 Apr 1996 07:37:34 -0700 (PDT)
Received: from rover.village.org (rover.village.org [204.144.255.49])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id HAA15896
          for <bugs@freefall.FreeBSD.org>; Tue, 16 Apr 1996 07:37:30 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by rover.village.org (8.7.5/8.6.6) with SMTP id IAA04439; Tue, 16 Apr 1996 08:37:09 -0600 (MDT)
Message-Id: <199604161437.IAA04439@rover.village.org>
To: Tom Samplonius <tom@uniserve.com>
Subject: Re: bin/1145: tftpd should support -s 
Cc: bugs@freefall.FreeBSD.org
In-reply-to: Your message of Mon, 15 Apr 1996 22:55:50 PDT
Date: Tue, 16 Apr 1996 08:37:09 -0600
From: Warner Losh <imp@village.org>
Sender: owner-bugs@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

:   But, why does tftpd need "-s"?

1) It is more secure than the normal tftpd because you know for sure
that it will not be able to get any files that aren't in the chrooted
tree.  With directory prefixes you don't turn off following things
through symbolic links, which is a minor security exposure that many
people don't wish to expose their machines to.

2) I have a bunch of X terms that are hard to configure such that it
will add the /usr/tftpboot or whatever on the front of them.  There
are other aps that I have as well that are hard if not impossible to
reconfigure, and this solves that problem nicely.

Warner