From owner-freebsd-questions Wed Oct 23 9:56:55 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A448E37B401 for ; Wed, 23 Oct 2002 09:56:53 -0700 (PDT) Received: from obsecurity.dyndns.org (adsl-64-165-226-88.dsl.lsan03.pacbell.net [64.165.226.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id 57B8F43E77 for ; Wed, 23 Oct 2002 09:56:51 -0700 (PDT) (envelope-from kris@obsecurity.org) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id E6ED866C7B; Wed, 23 Oct 2002 09:56:50 -0700 (PDT) Date: Wed, 23 Oct 2002 09:56:50 -0700 From: Kris Kennaway To: Feng Li Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Is there any info about this type tftp daemon ? Message-ID: <20021023165650.GD15601@xor.obsecurity.org> References: <20021023112945.5E51.FENGLI@kddia.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="EY/WZ/HvNxOox07X" Content-Disposition: inline In-Reply-To: <20021023112945.5E51.FENGLI@kddia.com> User-Agent: Mutt/1.4i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --EY/WZ/HvNxOox07X Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Oct 23, 2002 at 11:32:51AM -0400, Feng Li wrote: >=20 >=20 > Hi, Friends >=20 >=20 > I am a FreeBSD OS user. I am using one FreeBSD box as > my TFTP server. But with a inconventient problem: >=20 > Everytime, before I send file to this server, I have > to do the following process on this server: >=20 > /usr/tftpboot# touch xxxx-config > /usr/tftpboot# chmod 666 xxxx-config >=20 > I hope to omit this process, so if anyone knows where I can get > a TFTP daemon which can allow me to omit above inconvenience ? This indicates the tftpd daemon does not have write permission to /usr/tftpboot. This is of course a potential security hole because tftp does not authenticate, so you're giving everyone who can connect to your tftpd the permission to write/overwrite files into that directory. Kris --EY/WZ/HvNxOox07X Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE9ttTSWry0BWjoQKURAvLDAJ4yNuKojWWrkJujVb8IejKsI9BGvwCg+CY7 2qvDyfykAXVGmhC9zCyaRlk= =Q3k9 -----END PGP SIGNATURE----- --EY/WZ/HvNxOox07X-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message