Date: Mon, 18 Nov 1996 13:59:35 -0800 (PST) From: "Jonathan M. Bresler" <jmb> To: black@gage.com (Ben Black) Cc: fenner@parc.xerox.com, msmith@atrad.adelaide.edu.au, freebsd-security@freebsd.org Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2). Message-ID: <199611182159.NAA15497@freefall.freebsd.org> In-Reply-To: <9611181749.AA29784@squid.gage.com> from "Ben Black" at Nov 18, 96 11:49:32 am
index | next in thread | previous in thread | raw e-mail
Ben Black wrote:
>
> >It is, of course, possible to run as root for *just long enough* to bind to
> >port 25. Then setuid("smtp").
> >
>
> even better would be finer grained control over access to low numbered ports
> so you wouldn't need to be root to bind port 25.
portals. someone needs to finish jan-simon pendry's work ;(
then each port has has filesystem protection semantics
and this becomes very easy.
jmb
--
Jonathan M. Bresler FreeBSD Postmaster jmb@FreeBSD.ORG
FreeBSD--4.4BSD Unix for PC clones, source included. http://www.freebsd.org/
PGP 2.6.2 Fingerprint: 31 57 41 56 06 C1 40 13 C5 1C E3 E5 DC 62 0E FB
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199611182159.NAA15497>