From owner-freebsd-ports  Sun Oct 31 12:10:12 1999
Delivered-To: freebsd-ports@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21])
	by hub.freebsd.org (Postfix) with ESMTP id C9D2614F0A
	for <freebsd-ports@FreeBSD.org>; Sun, 31 Oct 1999 12:10:09 -0800 (PST)
	(envelope-from gnats@FreeBSD.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) id MAA79756;
	Sun, 31 Oct 1999 12:10:09 -0800 (PST)
	(envelope-from gnats@FreeBSD.org)
Date: Sun, 31 Oct 1999 12:10:09 -0800 (PST)
Message-Id: <199910312010.MAA79756@freefall.freebsd.org>
To: freebsd-ports@FreeBSD.org
Cc: 
From: Vincent Poy <vince@pele.WURLDLINK.NET>
Subject: Re: ports/14625: pidentd doesn't work correctly for finger since it
 will  only show the username nobody@ instead of root@ when it's performed
 by  the root user.  pidentd works fine for root for all other protocols. 
 It  seems like pidentd
Reply-To: Vincent Poy <vince@pele.WURLDLINK.NET>
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

The following reply was made to PR ports/14625; it has been noted by GNATS.

From: Vincent Poy <vince@pele.WURLDLINK.NET>
To: Marcin =?iso-8859-2?Q?Cie=B6lak?= <saper@system.pl>
Cc: freebsd-gnats-submit@freebsd.org
Subject: Re: ports/14625: pidentd doesn't work correctly for finger since it
 will  only show the username nobody@ instead of root@ when it's performed
 by  the root user.  pidentd works fine for root for all other protocols. 
 It  seems like pidentd
Date: Sun, 31 Oct 1999 10:09:16 -1000 (HST)

 On Sun, 31 Oct 1999, Marcin [iso-8859-2] Cieślak wrote:
 
 > 
 > This is a feature of a "finger" client utility, not a bug in any daemon
 > service.
 > "finger" utility, when started by root, drops its privileges to
 > unprivileged
 > user, most often "nobody" in order to increase security of the system
 > against for example hostile finger daemons.
 
 	The only problem with this is if someone else with FreeBSD tries
 to attack a box using the finger service as root, the logs would serve no
 purpose if it shows nobody@theirdomain.
 
 
 Cheers,
 Vince - vince@WURLDLINK.NET - Vice President             ________   __ ____ 
 Unix Networking Operations - FreeBSD-Real Unix for Free / / / / |  / |[__  ]
 WurldLink Corporation                                  / / / /  | /  | __] ]  
 San Francisco - Honolulu - Hong Kong                  / / / / / |/ / | __] ]
 HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____]
 Almighty1@IRC - oahu.DAL.NET Hawaii's DALnet IRC Network Server Admin
 
 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message