Date: Wed, 4 Oct 2000 14:48:29 -0400 (EDT) From: Robert Watson <rwatson@freebsd.org> To: cjclark@alum.mit.edu Cc: freebsd-security@freebsd.org Subject: Re: Fwd: eth-security : ANNOUNCE : Resources no for ALL Message-ID: <Pine.NEB.3.96L.1001004144516.5070I-100000@fledge.watson.org> In-Reply-To: <Pine.NEB.3.96L.1001004141942.5070G-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 4 Oct 2000, Robert Watson wrote: > /etc/rc: (cd /var/run && cp /dev/null utmp && chmod 644 > utmp;) It turns out their install script and rc patch modifications do this, although that isn't documented. However, they don't handle the newsyslog changes for wtmp, and their use of setgid displays a misunderstanding of how process credentials are managed in the kernel. This implementation worries me a bit, and I'm a little surprised they didn't post to freebsd-security requesting review before posting to bugtraq. All in all, I wouldn't recommend using these changes until they can be properly reviewed. Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1001004144516.5070I-100000>