From owner-freebsd-security Mon Dec 18 23:57: 1 2000 From owner-freebsd-security@FreeBSD.ORG Mon Dec 18 23:56:59 2000 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82]) by hub.freebsd.org (Postfix) with ESMTP id E74BE37B400 for ; Mon, 18 Dec 2000 23:56:58 -0800 (PST) Received: from rfx-64-6-211-149.users.reflexcom.com ([64.6.211.149]) by mailhost01.reflexnet.net with Microsoft SMTPSVC(5.5.1877.197.19); Mon, 18 Dec 2000 23:55:22 -0800 Received: (from cjc@localhost) by rfx-64-6-211-149.users.reflexcom.com (8.11.0/8.11.0) id eBJ7uw921255; Mon, 18 Dec 2000 23:56:58 -0800 (PST) (envelope-from cjc) Date: Mon, 18 Dec 2000 23:56:58 -0800 From: "Crist J. Clark" To: Tomasz Paszkowski Cc: freebsd-security@FreeBSD.ORG Subject: Re: procfs Message-ID: <20001218235658.C96105@149.211.6.64.reflexcom.com> Reply-To: cjclark@alum.mit.edu References: <20001219003737.C2567@genesis.k.pl> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <20001219003737.C2567@genesis.k.pl>; from ns88@k.pl on Tue, Dec 19, 2000 at 12:37:38AM +0100 Sender: cjc@rfx-64-6-211-149.users.reflexcom.com Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Dec 19, 2000 at 12:37:38AM +0100, Tomasz Paszkowski wrote: > > Can somebody tell my why, FreeBSD is not creating dirs and files on procfs > to be accessible only by the onwer ? I looked up in to the source and I changed > default permisions to more restrited. Is there're any disadvantages of > this solution, and if not can this be included in FreeBSD project ? Just to point out, I don't think this would not make a difference with respect to any of these procfs vulnerabilities. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message