From owner-cvs-src@FreeBSD.ORG  Thu Jan 26 21:05:40 2006
Return-Path: <owner-cvs-src@FreeBSD.ORG>
X-Original-To: cvs-src@FreeBSD.org
Delivered-To: cvs-src@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 49B0216A420;
	Thu, 26 Jan 2006 21:05:40 +0000 (GMT)
	(envelope-from brooks@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1BCDE43D48;
	Thu, 26 Jan 2006 21:05:40 +0000 (GMT)
	(envelope-from brooks@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id k0QL5enC013023;
	Thu, 26 Jan 2006 21:05:40 GMT
	(envelope-from brooks@repoman.freebsd.org)
Received: (from brooks@localhost)
	by repoman.freebsd.org (8.13.1/8.13.1/Submit) id k0QL5dG6013020;
	Thu, 26 Jan 2006 21:05:39 GMT (envelope-from brooks)
Message-Id: <200601262105.k0QL5dG6013020@repoman.freebsd.org>
From: Brooks Davis <brooks@FreeBSD.org>
Date: Thu, 26 Jan 2006 21:05:39 +0000 (UTC)
To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: src/sbin/dhclient dhclient-script
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Jan 2006 21:05:40 -0000

brooks      2006-01-26 21:05:39 UTC

  FreeBSD src repository

  Modified files:
    sbin/dhclient        dhclient-script 
  Log:
  Fix rev 1.12.
  
  /tmp may not be writeable yet when dhclient is first run via
  /etc/rc.d/netif so using it may not work.  Also, writing to a
  predictable file in /tmp as root is a really bad idea since a malicious
  user may be able to win a race and insert a symlink which will allow
  them to cause any file to be overwritten.  To solve these problems,
  create the tempory file in /var/run which will exist this early and is
  writable only by root.
  
  Security:       Local risk if users can cause dhclient to run on demand
                  (such as by unplugging and replugging the network cable).
  
  Revision  Changes    Path
  1.14      +1 -1      src/sbin/dhclient/dhclient-script