Date: Tue, 15 Dec 1998 08:17:03 -0000 (GMT) From: Duncan Barclay <dmlb@ragnet.demon.co.uk> To: Matt Dillon <dillon@FreeBSD.ORG> Cc: freebsd-bugs@FreeBSD.ORG Subject: Re: kern/8802 Message-ID: <XFMail.981215081703.dmlb@computer.my.domain> In-Reply-To: <199812122133.NAA14167@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12-Dec-98 Matt Dillon wrote:
> Synopsis: Users can obtain a bound privaliged TCP port using portal
>
> State-Changed-From-To: open-closed
> State-Changed-By: dillon
> State-Changed-When: Sat Dec 12 13:28:40 PST 1998
> State-Changed-Why:
> I fixed an unrelated MSG_EOR flagging problem in portal but I wasn't able
> to reproduce the privilage problem.
>
> apollo:/home/dillon> read < /p/tcp/localhost/1000/priv
> /p/tcp/localhost/1000/priv: Operation not permitted.
> apollo:/home/dillon> read < /p/tcp/localhost/25/priv
> /p/tcp/localhost/25/priv: Operation not permitted.
>
> I noticed your test accessed /p/tcp/localhost/1000/priv as root, perhaps
> that is why you were able to obtain a privilaged port ? If I'm missing
> something here, please tell me and I'll re-open the bug :-)
>
> -Matt
Matt,
I've just realised that this PR is only one of a batch of portal PR's I
submitted a few weeks ago, there are other small bugs (including the MSG_EOR)
that are addressed in
kern/8793
kern/8796
kern/8797
kern/8798
you might like to add them too whilst the code is still in your head.
Duncan
---
________________________________________________________________________
Duncan Barclay | God smiles upon the little children,
dmlb@ragnet.demon.co.uk | the alcoholics, and the permanently stoned.
________________________________________________________________________
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.981215081703.dmlb>