From owner-cvs-all  Mon Dec 21 16:19:33 1998
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id QAA18459
          for cvs-all-outgoing; Mon, 21 Dec 1998 16:19:33 -0800 (PST)
          (envelope-from owner-cvs-all@FreeBSD.ORG)
Received: from gatekeeper.tsc.tdk.com (gatekeeper.tsc.tdk.com [207.113.159.21])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA18449;
          Mon, 21 Dec 1998 16:19:32 -0800 (PST)
          (envelope-from gdonl@tsc.tdk.com)
Received: from sunrise.gv.tsc.tdk.com (root@sunrise.gv.tsc.tdk.com [192.168.241.191])
	by gatekeeper.tsc.tdk.com (8.8.8/8.8.8) with ESMTP id QAA17877;
	Mon, 21 Dec 1998 16:19:17 -0800 (PST)
	(envelope-from gdonl@tsc.tdk.com)
Received: from salsa.gv.tsc.tdk.com (salsa.gv.tsc.tdk.com [192.168.241.194])
	by sunrise.gv.tsc.tdk.com (8.8.5/8.8.5) with ESMTP id QAA19948;
	Mon, 21 Dec 1998 16:19:16 -0800 (PST)
Received: (from gdonl@localhost)
	by salsa.gv.tsc.tdk.com (8.8.5/8.8.5) id QAA16547;
	Mon, 21 Dec 1998 16:19:13 -0800 (PST)
From: Don Lewis <Don.Lewis@tsc.tdk.com>
Message-Id: <199812220019.QAA16547@salsa.gv.tsc.tdk.com>
Date: Mon, 21 Dec 1998 16:19:13 -0800
In-Reply-To: Dag-Erling Smorgrav <des@flood.ping.uio.no>
       "Re: cvs commit: src/etc rc.conf" (Dec 21,  3:45pm)
X-Mailer: Mail User's Shell (7.2.6 alpha(3) 7/19/95)
To: Dag-Erling Smorgrav <des@flood.ping.uio.no>,
        Matt Dillon <dillon@FreeBSD.ORG>
Subject: Re: cvs commit: src/etc rc.conf
Cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk

On Dec 21,  3:45pm, Dag-Erling Smorgrav wrote:
} Subject: Re: cvs commit: src/etc rc.conf
} Matt Dillon <dillon@FreeBSD.ORG> writes:
} >   Log:
} >       Take bind out of sandbox and run it as root again, but leave support
} >       mechanisms ('bind' user and group) in place so the feature can be easily
} >       turned on.  There were too many complaints.  The security(1) man
} >       page will be created/updated to include the appropriate info.
} 
} Complaints? The naked truth is that it will not work in any but the
} simplest setups, unless you add code to named to temporarily regain
} privs before updating the pid file or rescanning interfaces. Doing so
} will void any security the sandbox may give you, since it will make it
} possible for hypothetical buffer overflow exploits to regain privs.

Why does it need to rewrite the pid file when it receives SIGHUP?  This
doesn't change its process id ...

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message