Date: Mon, 26 Aug 1996 08:38:44 -0700 From: Paul Traina <pst@shockwave.com> To: "Rodney W. Grimes" <rgrimes@GndRsh.aac.dev.com> Cc: CVS-committers@freefall.freebsd.org, cvs-all@freefall.freebsd.org, cvs-etc@freefall.freebsd.org, cvs-usrsbin@freefall.freebsd.org Subject: Re: cvs commit: src/etc/mtree BSD.var.dist src/usr.sbin/rwhod rwhod.c Message-ID: <199608261538.IAA12326@precipice.shockwave.com> In-Reply-To: Your message of "Sun, 25 Aug 1996 22:25:14 PDT." <199608260525.WAA18244@GndRsh.aac.dev.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Introduce NFS and you eliminate security anyway. It's actually 775 daemon.daemon I believe. If you have a better suggestion, I'm all ears. It's currently a compromise. From: "Rodney W. Grimes" <rgrimes@GndRsh.aac.dev.com> Subject: Re: cvs commit: src/etc/mtree BSD.var.dist src/usr.sbin/rwhod rwhod >>.c > pst 96/08/25 14:37:12 > > Modified: etc/mtree BSD.var.dist > usr.sbin/rwhod rwhod.c > Log: > Fix buffer overrun, and run as nobody Hummm... I take it that you set /var/rwho nobody:whoever mode 755, which now means /var/rwho is open for writting into if /var is NFS exported... and all the datafiles will be smashable by other NFS hosts :-(. -- Rod Grimes rgrimes@gndrsh.aac.dev.com Accurate Automation Company Reliable computers for FreeBSD
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199608261538.IAA12326>