From owner-freebsd-ports  Sat Jan 12 16: 4:21 2002
Delivered-To: freebsd-ports@freebsd.org
Received: from wwweasel.geeksrus.net (wwweasel.geeksrus.net [64.67.200.82])
	by hub.freebsd.org (Postfix) with ESMTP id A1ACB37B405
	for <ports@freebsd.org>; Sat, 12 Jan 2002 16:04:14 -0800 (PST)
Received: (from alane@localhost)
	by wwweasel.geeksrus.net (8.11.6/8.11.6) id g0D03cX69581;
	Sat, 12 Jan 2002 19:03:38 -0500 (EST)
	(envelope-from alane)
Date: Sat, 12 Jan 2002 19:03:38 -0500
From: Alan Eldridge <alane@geeksrus.net>
To: Ken Stailey <kstailey@surfbest.net>
Cc: FreeBSD Ports List <ports@freebsd.org>
Subject: Re: ports/www/mozilla/Makefile
Message-ID: <20020113000338.GA69552@wwweasel.geeksrus.net>
References: <3C40B663.1000108@surfbest.net> <20020112234802.GB69357@wwweasel.geeksrus.net> <3C40CD26.7020702@surfbest.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <3C40CD26.7020702@surfbest.net>
User-Agent: Mutt/1.3.25i
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org

On Sat, Jan 12, 2002 at 06:56:22PM -0500, Ken Stailey wrote:
>Alan Eldridge wrote:
>>The ITS way of doing things also assumes you can trust your users. I
>>am willing to make no such assumption. Those days are gone. I miss them.
>>
>Then why run an PI ITS if you don't like the way things are done there?

You run it in your own space, with your own permissions.

>>Something that requires running as root and modifying files (sharing
>>them between users, even) in the ${PREFIX} tree strikes me as a
>>BMF security problem. A disaster waiting to happen. 
>>
>Can the emulator effect things outside of the vm?  If not then it's an 
>ITS problem not a FreeBSD one.

If the file is world writable, then the vm doesn't have to directly
do anything.

Hell, somebody can just dd a bunch of zeros on top of it to piss you
off.

How *do* multiple users share the emulator?

>The KLH-10 code probably hasn't been audited.  I wonder if using setuid 
>on just dpimp would be
>dangerous or not.

If you don't know what the code does, then making it setuid root is
highly irresponsible.

-- 
Alan Eldridge
Pmmfmffmmfmp mmmpppppffmpmfpmpppff PmpMpmMpp ppfppp MpfpffmppmppMmpFmmMpm 
mfpmmmmmfpmpmpppff.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message