Date: Sat, 06 Oct 2001 01:51:19 -0700 From: Terry Lambert <tlambert2@mindspring.com> To: hackers@freebsd.org Cc: net@freebsd.org Subject: IPSEC code error Message-ID: <3BBEC607.CC098104@mindspring.com>
next in thread | raw e-mail | index | archive | help
On a related topic, there appears to be a code error in the IPSEC code. Specifically, the priv flag is set to 1 if the user is root and the socket is non-null (this lets the code be called from the bridging code as well, so ignore the first half of the "if" test, and concentrate on the "uid == 0" test). In the code that examines this flag, the comment is that it is looking at whether or not the port is a priviledged port, not whether or not the user who owns it is root. This implies that the "rootness" check improperly flags any ports opened by root, regardless of whether or not they are priviledged ports. Is the code where the flag is initialized correct, or is the comment where the flag is observed correct? -- Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BBEC607.CC098104>