From owner-freebsd-security  Sun Aug 19 17:16:30 2001
Delivered-To: freebsd-security@freebsd.org
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by hub.freebsd.org (Postfix) with ESMTP
	id EB09637B40B; Sun, 19 Aug 2001 17:16:23 -0700 (PDT)
	(envelope-from robert@fledge.watson.org)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.11.5/8.11.5) with SMTP id f7K0GMP34669;
	Sun, 19 Aug 2001 20:16:22 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Sun, 19 Aug 2001 20:16:21 -0400 (EDT)
From: Robert Watson <rwatson@freebsd.org>
X-Sender: robert@fledge.watson.org
To: "Andrew R. Reiter" <arr@watson.org>
Cc: audit@freebsd.org, security@freebsd.org
Subject: Re: login_cap
In-Reply-To: <Pine.NEB.3.96L.1010817092248.7775A-100000@fledge.watson.org>
Message-ID: <Pine.NEB.3.96L.1010819201254.34466B-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


Would this make use of the setlogincontext() code in libutil?  If so, I'd
be very happy to see that used more pervasively through the system.  In
particular, using LOGIN_SETALL with appropriate bits substracted, rather
than specifying individual bits.  The reasoning for this is that my MAC
code uses a new LOGIN_SETLABEL flag, and I noticed a number of existing
uses of setlogincontext() that set only specific bits but leave out parts
of the context setup.  Likewise, places in the system where uids/etc are
manually configured, resulting in incorrect setting of additional groups,
resource limits, etc.  Given that appropriate enforcement of system
resource limits is now vital to maintaining multi-user systems, being
consistent about enforcing them in all situations is very important.

Robert N M Watson             FreeBSD Core Team, TrustedBSD Project
robert@fledge.watson.org      NAI Labs, Safeport Network Services

On Fri, 17 Aug 2001, Andrew R. Reiter wrote:

> Hey,
> 
> Im wondering if there's any real interest for patches to be made for some
> services so that they do login class, etc authentication?  Such an example
> would be for atrun.c in libexec/atrun/.  
> 
> In my opinion, it is probably worth doing and getting commited, but if no
> one would commit the patches, I dont see a point in doing them :-)
> 
> btw, if you're unfamiliar with login caps, check out login_cap(3) and
> login_class(3).
> 
> Andrew
> 
> *-------------.................................................
> | Andrew R. Reiter 
> | arr@fledge.watson.org
> | "It requires a very unusual mind
> |   to undertake the analysis of the obvious" -- A.N. Whitehead
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message