From owner-cvs-all  Mon Apr 16  8:36:10 2001
Delivered-To: cvs-all@freebsd.org
Received: from gndrsh.dnsmgr.net (GndRsh.dnsmgr.net [198.145.92.4])
	by hub.freebsd.org (Postfix) with ESMTP
	id 83E1137B42C; Mon, 16 Apr 2001 08:36:06 -0700 (PDT)
	(envelope-from freebsd@gndrsh.dnsmgr.net)
Received: (from freebsd@localhost)
	by gndrsh.dnsmgr.net (8.9.3/8.9.3) id IAA52751;
	Mon, 16 Apr 2001 08:36:05 -0700 (PDT)
	(envelope-from freebsd)
From: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>
Message-Id: <200104161536.IAA52751@gndrsh.dnsmgr.net>
Subject: Re: cvs commit: ports/www/mnoGoSearch-current Makefile
In-Reply-To: <200104150808.f3F88I176805@freefall.freebsd.org> from "Andrey A. Chernov" at "Apr 15, 2001 01:08:18 am"
To: ache@FreeBSD.org (Andrey A. Chernov)
Date: Mon, 16 Apr 2001 08:36:04 -0700 (PDT)
Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
X-Mailer: ELM [version 2.4ME+ PL54 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> ache        2001/04/15 01:08:18 PDT
> 
>   Modified files:
>     www/mnoGoSearch-current Makefile 
>   Log:
>   chown nobody.nogroup whole /var/mnogosearch (not require additional privs for
>   spelld)

This exposes these files to NFS root access.  The original concept of
nobody and nogroup was introduced by NFS, and the intent was that no
file no place ever should have a uid/gid with these values, as that
is what root is mapped to without a -maproot clause in the exports
line.

Please do NOT continue to propogate this error of actually makeing
files owned by nobody or have group nogroup.


-- 
Rod Grimes - KD7CAX @ CN85sl - (RWG25)               rgrimes@gndrsh.dnsmgr.net

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message