Date: Mon, 18 Nov 1996 18:35:12 -0500 (EST) From: Adam Shostack <adam@homeport.org> To: jaitken@cslab.vt.edu (Jeff Aitken) Cc: Don.Lewis@tsc.tdk.com, freebsd-security@FreeBSD.org Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2). Message-ID: <199611182335.SAA15752@homeport.org> In-Reply-To: <9611182042.AA26448@husky.cslab.vt.edu> from Jeff Aitken at "Nov 18, 96 03:42:13 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Jeff Aitken wrote: | Don Lewis writes: | > On Nov 18, 2:16pm, Adam Shostack wrote: | > } Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2). | > } | > } If network access went through the file system, then | > } chown smtp /dev/tcp/smtp would give us a known access control | > } mechanism, rather than trying to extend the process table. | > | > I think mapping network accesses into filesystem space is the way to | > go, but I don't know how to get the semantics right. | | Am I mis-remembering things, or is this exactly the sort of thing the | portal filesystem is supposed to provide? I don't have my 4.4BSD book | handy, but I seem to recall reading about this kind of feature. It does indeed mention this, and suggests a semantic of /net/tcp/McKusick.com/smtp. It refers to a paper by Stevens & Pendry (Portals in 4.4BSD, Jan 95 Usenix proceedings). Page 237 of 4.4bsd. Adam -- "It is seldom that liberty of any kind is lost all at once." -Hume
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199611182335.SAA15752>