From owner-freebsd-security Sat Sep 8 19:15:27 2001 Delivered-To: freebsd-security@freebsd.org Received: from obsecurity.dyndns.org (adsl-63-207-60-54.dsl.lsan03.pacbell.net [63.207.60.54]) by hub.freebsd.org (Postfix) with ESMTP id 33F0E37B406 for ; Sat, 8 Sep 2001 19:15:25 -0700 (PDT) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id 8C79566D0A; Sat, 8 Sep 2001 19:15:24 -0700 (PDT) Date: Sat, 8 Sep 2001 19:15:24 -0700 From: Kris Kennaway To: security@FreeBSD.org Subject: [rwatson@FreeBSD.org: Re: [zen-parse@gmx.net: Multiple vendor 'Taylor UUCP' problems.]] Message-ID: <20010908191523.A6220@xor.obsecurity.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org ----- Forwarded message from Robert Watson ----- Delivered-To: kkenn@localhost.obsecurity.org Date: Sat, 08 Sep 2001 22:11:47 -0400 (EDT) From: Robert Watson Subject: Re: [zen-parse@gmx.net: Multiple vendor 'Taylor UUCP' problems.] In-reply-to: <20010908170533.B82247@xor.obsecurity.org> X-Sender: robert@fledge.watson.org To: Kris Kennaway Cc: security-officer@FreeBSD.org Delivered-to: kris@freebsd.org Note that any fix that relies on schg is broken when the client runs over NFS from a non-BSD server (or installed via NFS). Fixes can rely on permissions or ownership changes, but not BSD-specific file flags (the dillon solution will not work in some situations, in other words) Robert N M Watson FreeBSD Core Team, TrustedBSD Project robert@fledge.watson.org NAI Labs, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message