From owner-freebsd-bugs  Thu Sep 14 10:17:10 2000
Delivered-To: freebsd-bugs@freebsd.org
Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])
	by hub.freebsd.org (Postfix) with ESMTP id 23A9837B424
	for <freebsd-bugs@FreeBSD.ORG>; Thu, 14 Sep 2000 10:17:04 -0700 (PDT)
Received: (from babolo@localhost)
	by aaz.links.ru (8.9.3/8.9.3) id VAA16269;
	Thu, 14 Sep 2000 21:16:56 +0400 (MSD)
Message-Id: <200009141716.VAA16269@aaz.links.ru>
Subject: Re: bin/21268: tftpd security improvement
In-Reply-To: <200009141710.KAA63616@freefall.freebsd.org> from "Garrett Wollman" at "Sep 14, 0 10:10:04 am"
To: wollman@khavrinen.lcs.mit.edu
Date: Thu, 14 Sep 2000 21:16:56 +0400 (MSD)
Cc: freebsd-bugs@FreeBSD.ORG
From: "Aleksandr A.Babaylov" <babolo@links.ru>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Garrett Wollman writes:
>  <<On Thu, 14 Sep 2000 20:47:36 +0400 (MSD), "Aleksandr A. Babaylov" <babolo@links.ru> said:
>  
>  > Change user to some another helps - you can have files for write
>  > by tftpd belongs to some specific user (psevdouser) and be not writable
>  > by everyone.
>  
>  I agree with this patch (with a few changes in wording).  If it passes
>  muster with the security gods, I'd go for it.
Is it useful to reserve uid tftp?

>  -GAWollman
>  
>  --
>  Garrett A. Wollman   | O Siem / We are all family / O Siem / We're all the same
>  wollman@lcs.mit.edu  | O Siem / The fires of freedom 
>  Opinions not those of| Dance in the burning flame
>  MIT, LCS, CRS, or NSA|                     - Susan Aglukark and Chad Irschick

-- 
@BABOLO      http://links.ru/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message