Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 31 Oct 1999 12:10:03 -0800 (PST)
From:      Vincent Poy <vince@pele.WURLDLINK.NET>
To:        freebsd-ports@FreeBSD.org
Subject:   Re: ports/14625: pidentd doesn't work correctly for finger since it will  only show the username nobody@ instead of root@ when it's performed by  the root user.  pidentd works fine for root for all other protocols.  It  seems like pidentd
Message-ID:  <199910312010.MAA79749@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/14625; it has been noted by GNATS.

From: Vincent Poy <vince@pele.WURLDLINK.NET>
To: Marcin =?iso-8859-2?Q?Cie=B6lak?= <saper@system.pl>
Cc: freebsd-gnats-submit@freebsd.org
Subject: Re: ports/14625: pidentd doesn't work correctly for finger since it
 will  only show the username nobody@ instead of root@ when it's performed
 by  the root user.  pidentd works fine for root for all other protocols. 
 It  seems like pidentd
Date: Sun, 31 Oct 1999 10:09:16 -1000 (HST)

 On Sun, 31 Oct 1999, Marcin [iso-8859-2] Cieślak wrote:
 
 > 
 > This is a feature of a "finger" client utility, not a bug in any daemon
 > service.
 > "finger" utility, when started by root, drops its privileges to
 > unprivileged
 > user, most often "nobody" in order to increase security of the system
 > against for example hostile finger daemons.
 
 	The only problem with this is if someone else with FreeBSD tries
 to attack a box using the finger service as root, the logs would serve no
 purpose if it shows nobody@theirdomain.
 
 
 Cheers,
 Vince - vince@WURLDLINK.NET - Vice President             ________   __ ____ 
 Unix Networking Operations - FreeBSD-Real Unix for Free / / / / |  / |[__  ]
 WurldLink Corporation                                  / / / /  | /  | __] ]  
 San Francisco - Honolulu - Hong Kong                  / / / / / |/ / | __] ]
 HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____]
 Almighty1@IRC - oahu.DAL.NET Hawaii's DALnet IRC Network Server Admin
 
 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199910312010.MAA79749>