Site Navigation

Date:      Mon, 18 Nov 1996 13:59:35 -0800 (PST)
From:      "Jonathan M. Bresler" <jmb>
To:        black@gage.com (Ben Black)
Cc:        fenner@parc.xerox.com, msmith@atrad.adelaide.edu.au, freebsd-security@freebsd.org
Subject:   Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2).
Message-ID:  <199611182159.NAA15497@freefall.freebsd.org>
In-Reply-To: <9611181749.AA29784@squid.gage.com> from "Ben Black" at Nov 18, 96 11:49:32 am

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

Ben Black wrote:
> 
> >It is, of course, possible to run as root for *just long enough* to bind to 
> >port 25.  Then setuid("smtp").
> >
> 
> even better would be finer grained control over access to low numbered ports  
> so you wouldn't need to be root to bind port 25.

	portals.  someone needs to finish jan-simon pendry's work ;(


	then each port has has filesystem protection semantics
	and this becomes very easy.		

jmb
--
Jonathan M. Bresler           FreeBSD Postmaster             jmb@FreeBSD.ORG
FreeBSD--4.4BSD Unix for PC clones, source included. http://www.freebsd.org/
PGP 2.6.2 Fingerprint:      31 57 41 56 06 C1 40 13  C5 1C E3 E5 DC 62 0E FB

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199611182159.NAA15497>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact