Date: Wed, 12 Mar 1997 10:32:48 -0500 From: Garrett Wollman <wollman@lcs.mit.edu> To: Guido van Rooij <guido@gvr.win.tue.nl> Cc: freebsd-security@freebsd.org, core@freebsd.org Subject: Re: NFS security issue... Message-ID: <9703121532.AA18955@halloran-eldar.lcs.mit.edu> In-Reply-To: <9703121525.AA18864@halloran-eldar.lcs.mit.edu> References: <19970312011954.205.qmail@char-star.rdist.org> <199703121303.OAA19396@gvr.win.tue.nl> <9703121525.AA18864@halloran-eldar.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Wed, 12 Mar 1997 10:25:11 -0500, I wrote: > Except, of course, that it doesn't belong under net, it belongs under > [v]fs.nfs. At this point, you may want to fix P-HK's breakage of > sysctl variables for LKM filesystems. One thing I forgot to mention... I am right now contemplating changing the socket interface to pass user credentials down to pru_bind(). This could be used, for example, to provide a more sophisticated access-control model for local port numbers (like blocking user attempts to bind to port 2049). Hopefully we can get rid of SS_PRIV completely... -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, ANA, or NSA| - Susan Aglukark and Chad Irschick
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9703121532.AA18955>