Date: Mon, 01 Jun 1998 02:05:31 -0700 From: David Greenman <dg@root.com> To: Nadav Eiron <nadav@cs.technion.ac.il> Cc: Terry Lambert <tlambert@primenet.com>, abial@nask.pl, freebsd-hackers@FreeBSD.ORG Subject: Re: Signed executables, safe delete etc. Message-ID: <199806010905.CAA09890@implode.root.com> In-Reply-To: Your message of "Mon, 01 Jun 1998 10:41:45 %2B0300." <Pine.GSO.3.95-heb-2.07.980601103415.4910C-100000@csd>
next in thread | previous in thread | raw e-mail | index | archive | help
(this is getting WAY off the subject of FreeBSD, but since we're discussing
architecture...)
>> As I was a VMS user and kernel software developer for 10 years prior to
>> hacking on Unix source, I'm quite familiar with how VMS works both internally
>> and externally. The linker in VMS is not installed with any special privilege
>> and any user can make a binary executable. A user, for example, can use kermit
>> or other file transfer utility to copy over a VMS executable and as long as
>> the file record type is correct (fixed, 512 byte records) and he sets the
>> execute permission (set file/prot=exec...I'd mention the system call to do
>> this if I could remember it), he can execute it.
>
>If you have BYPASS priv, then even this is not necessary. You simply run
>it.
Normal users usually don't have BYPASS privilege, else you have a serious
security hole. :-)
>> As I mentioned above, the SYSPRIV privilege allows the process to access
>> resources as if he had a system UIC. There are 4 sets of permissions bits
>> in VMS: user, system, group, and world. A system UIC is (usually) a UIC that
>> has a group number that is less than 9. If you have a system UIC or you
> ^^^^^^^^^^^
>VMS UICs are in octal (usually). A system UIC is one that has group < 10
>(octal), or less than 8 if you happen to favor decimal notation...
You're right that in VMS one usually specifies UICs in octal. However,
according to the online documentation:
SYSGEN> HELP PARAM MAXSYSGROUP
Parameters
MAXSYSGROUP
Highest system UIC - The highest value that a group number can have
and still be classified as a a system UIC group member. In decimal.
Topic?
SYSGEN> SHOW MAXSYSGROUP
Parameter Name Current Default Min. Max. Unit Dynamic
-------------- ------- ------- ------- ------- ---- -------
MAXSYSGROUP 8 8 1 32768 UIC Group D
-DG
David Greenman
Co-founder/Principal Architect, The FreeBSD Project
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806010905.CAA09890>