From owner-freebsd-security Wed Jun 23 4: 4:33 1999 Delivered-To: freebsd-security@freebsd.org Received: from alice.gba.oz.au (gba-254.tmx.com.au [203.9.155.254]) by hub.freebsd.org (Postfix) with SMTP id 6477714F7D for ; Wed, 23 Jun 1999 04:04:17 -0700 (PDT) (envelope-from gjb@acm.org) Received: (qmail 24561 invoked by uid 1001); 23 Jun 1999 13:14:56 +1000 Message-ID: <19990623031456.24560.qmail@alice.gba.oz.au> X-Posted-By: GBA-Post 1.03 20-Sep-1998 X-PGP-Fingerprint: 5A91 6942 8CEA 9DAB B95B C249 1CE1 493B 2B5A CE30 Date: Wed, 23 Jun 1999 13:14:55 +1000 From: Greg Black MBOX-Line: From Greg Black To: Andrew McNaughton Cc: Dag-Erling Smorgrav , Michael Richards <026809r@dragon.acadiau.ca>, freebsd-security@FreeBSD.ORG Subject: Re: Allowing non root users to bind low ports References: <199906221758.FAA07268@aniwa.sky> In-reply-to: <199906221758.FAA07268@aniwa.sky> of Wed, 23 Jun 1999 05:58:36 +1200 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > I was giving this concept a little thought. If I'm not root and I can bind > > > a low port, let's say the telnet port. I could write myself a fake telnet > > > daemon and run it. Sooner or later, someone is going to try using it... > > > This whole thing about non-root users binding to low ports would only be > > > useful if there are no shell accounts on a machine IMO. > > > > Well, duh. That's why we want to turn this off before going multiuser > > (but after starting stuff like sendmail etc.) > > That approach is of limited use unless you're prepared to reboot your machine > every time you want to change your sendmail configuration. If you're serious about security, then this is the sort of trade-off you have to make. > Sounds too much like Windows for my liking. Nothing short of reconfiguring > the kernel or a make world should require a reboot. A normal production box probably won't change configuration in between OS upgrades anyway, so this is not such a hardship as it might seem. Boxes where experimental configurations are being changed all the time will not run with elevated secure levels and won't be inconvenienced. -- Greg Black -- or Fight censorship in Australia: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message