Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 29 Jul 1997 09:40:16 -0400 (EDT)
From:      Robert Watson <robert@cyrus.watson.org>
To:        Adam Shostack <adam@homeport.org>
Cc:        robert+freebsd@cyrus.watson.org, vince@mail.MCESTATE.COM, security@FreeBSD.ORG
Subject:   Re: security hole in FreeBSD
Message-ID:  <Pine.BSF.3.95q.970729093625.5972F-100000@cyrus.watson.org>
In-Reply-To: <199707291250.IAA12447@homeport.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Tue, 29 Jul 1997, Adam Shostack wrote:

> I know no one who still runs uucp.  There are a few holdouts, but most
> systems can leave uucp off with no pain.  Ditto with kerberos. :)

Hey!  I run Kerberos! :)  Actually, the only Kerberos command that
requires suid (that I know of) is register, which allows a user on a host
to register into Kerberos if they weren't added there administratively by
whoever created their account.  It's a good migration tool if you have a
few servers, NIS, etc, but no risk of overlapping names, but not actually
used by very many people at all.  In fact, I'm the only person I know of
who has ever used it, although I know of quite a few people running
Kerberos, especially in academic environments.  Register could easily be
made suid-something-else, and the keyfile it uses be changed to
something-else.  Perhaps a kerberos user should be created.  Similarly, on
the main Kerberos server, the kerberos daemon (and files) are owned by
root.  The kerberos daemon could be made to setuid() to a kerberos user
once the bind() has taken place (plea for a non-root bind!) and run as
non-root from then on fairly easily.  Just because it's an authentication
system doesn't mean it has to run as root.


  Robert N Watson 

Junior, Logic+Computation, Carnegie Mellon University  http://www.cmu.edu/
Network Security Research, Trusted Information Systems http://www.tis.com/
Network Administrator, SafePort Network Services  http://www.safeport.com/
robert@fledge.watson.org   rwatson@tis.com  http://www.watson.org/~robert/

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95q.970729093625.5972F-100000>