Date: Mon, 21 Dec 1998 16:19:13 -0800 From: Don Lewis <Don.Lewis@tsc.tdk.com> To: Dag-Erling Smorgrav <des@flood.ping.uio.no>, Matt Dillon <dillon@FreeBSD.ORG> Cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc rc.conf Message-ID: <199812220019.QAA16547@salsa.gv.tsc.tdk.com> In-Reply-To: Dag-Erling Smorgrav <des@flood.ping.uio.no> "Re: cvs commit: src/etc rc.conf" (Dec 21, 3:45pm)
next in thread | previous in thread | raw e-mail | index | archive | help
On Dec 21, 3:45pm, Dag-Erling Smorgrav wrote:
} Subject: Re: cvs commit: src/etc rc.conf
} Matt Dillon <dillon@FreeBSD.ORG> writes:
} > Log:
} > Take bind out of sandbox and run it as root again, but leave support
} > mechanisms ('bind' user and group) in place so the feature can be easily
} > turned on. There were too many complaints. The security(1) man
} > page will be created/updated to include the appropriate info.
}
} Complaints? The naked truth is that it will not work in any but the
} simplest setups, unless you add code to named to temporarily regain
} privs before updating the pid file or rescanning interfaces. Doing so
} will void any security the sandbox may give you, since it will make it
} possible for hypothetical buffer overflow exploits to regain privs.
Why does it need to rewrite the pid file when it receives SIGHUP? This
doesn't change its process id ...
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199812220019.QAA16547>