Date: Sun, 26 Sep 1999 18:47:05 -0400 (EDT) From: Thomas Valentino Crimi <tcrimi+@andrew.cmu.edu> To: freebsd-security@FreeBSD.ORG Subject: Re: dump(8) Insecurity/Misconfiguration Message-ID: <Erve9d600UwE0xnio0@andrew.cmu.edu> In-Reply-To: <199909260203.WAA48170@cc942873-a.ewndsr1.nj.home.com> References: <199909260203.WAA48170@cc942873-a.ewndsr1.nj.home.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Excerpts from FreeBSD-Security: 25-Sep-99 Re: dump(8) Insecurity/Misc.. by "Crist J. Clark"@cc94287 > "Dump cannot do remote backups without being run as root, due to its secu- > > rity history. This will be fixed in a later version of FreeBSD. Present- > > ly, it works if you set it setuid (like it used to be), but this might > constitute a security risk." Speaking of this, this summer I adopted NetBSD's ability to use ssh rather than rsh-style connections to do remote dump. It was a modification to rcmd() which read in the environmental variable RCMD_CMD (IIRC), used that program if set. If people are interested in this, I'd be glad to clean up and submit these patches. Any features/changes that would be handy? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Erve9d600UwE0xnio0>