From owner-freebsd-security  Wed Nov  3  7:29:50 1999
Delivered-To: freebsd-security@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP id 1DF4715635
	for <freebsd-security@FreeBSD.ORG>; Wed,  3 Nov 1999 07:29:40 -0800 (PST)
	(envelope-from cy@cschuber.net.gov.bc.ca)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id HAA26958;
	Wed, 3 Nov 1999 07:29:39 -0800
Received: from cschuber.net.gov.bc.ca(142.31.240.113), claiming to be "cwsys.cwsent.com"
 via SMTP by point.osg.gov.bc.ca, id smtpda26950; Wed Nov  3 07:28:26 1999
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.9.3/8.9.1) id HAA25358;
	Wed, 3 Nov 1999 07:21:29 -0800 (PST)
Message-Id: <199911031521.HAA25358@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdM25354; Wed Nov  3 07:21:21 1999
X-Mailer: exmh version 2.1.0 09/18/1999
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-OS: FreeBSD 3.3-RELEASE
X-Sender: cy
To: cjclark@home.com
Cc: beaupran@iro.umontreal.ca (Spidey), peter.jeremy@alcatel.com.au,
	freebsd-security@FreeBSD.ORG
Subject: Re: Examining FBSD set[ug]ids and their use 
In-reply-to: Your message of "Mon, 01 Nov 1999 23:49:57 EST."
             <199911020449.XAA03496@cc942873-a.ewndsr1.nj.home.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 03 Nov 1999 07:21:20 -0800
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <199911020449.XAA03496@cc942873-a.ewndsr1.nj.home.com>, "Crist J. Cl
ark" writes:
> Spidey wrote,
> > > ># Allow users to bind on a socket (which? where?)
> > > >	ping mode=4555
> > > Needed to allow ordinary mortals to sent raw IP (ICMP) packets.
> > 
> > I don't think this should be enable by default... on a shell box, this 
> > could cause some pretty dense headaches...
> 
> You don't think mortal users should be able to ping? IMHO, ping is a
> _very_ basic utility that generally should be turned on. I don't want
> to have to 'su' to root everytime I want to ping a host to see if it
> is awake. Same goes for traceroute(8).

I've seen and tried ping exploits for Sun and DEC platforms that are
supposed to relinquish root to an attacker, though my tests have crashed
the boxes rather than relinquish root.

Something my team has been discussing, without consensus of course,
is providing sudo access to ping to users we trust.

> 
> If you want to turn off the setuid (in which case you might as well
> chmod to 700 as well), you can, but I really don't see it as the
> default setup.

Agreed.


Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Sun/DEC Team, UNIX Group    Internet:  Cy.Schubert@uumail.gov.bc.ca
ITSD                                   Cy.Schubert@gems8.gov.bc.ca
Province of BC
                      "e**(i*pi)+1=0"





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message