Date: Tue, 14 Dec 1999 20:51:40 -0800 (PST) From: Matthew Dillon <dillon@apollo.backplane.com> To: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net> Cc: louie@TransSys.COM (Louis A. Mamakos), obrien@NUXI.com, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/usr.sbin/chown Makefile Message-ID: <199912150451.UAA26014@apollo.backplane.com> References: <199912150021.QAA20295@gndrsh.dnsmgr.net>
next in thread | previous in thread | raw e-mail | index | archive | help
:That actually makes more since! It also narrows the race window between
:mknod and chown/chmod, which technically could be a security issue. Haven't
:seen any exploits written that sit and spin waiting for a new open device
:node, but that doesn't mean one couldn't be written :-)
:..
:This does go against my grain of though that unix commands should do one
:thing and one thing only, but but I could arguee with myself that creating
:a device node includes doing so with correct owner ship and permissions,
:just as install does when installing a file.
:
:
:--
:Rod Grimes - KD7CAX @ CN85sl - (RWG25) rgrimes@gndrsh.dnsmgr.net
Yes. Think about how many places mknod is actually used - personally
speaking, I don't think I've ever used the command directly. Only
MAKEDEV really uses it on a regular basis. So mknod seems to be the
perfect place to add the necessary MAKEDEV support.
-Matt
Matthew Dillon
<dillon@backplane.com>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199912150451.UAA26014>