Date: Fri, 21 Aug 1998 14:19:00 -0500 From: Jon Hamilton <hamilton@pobox.com> To: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> Cc: dima@best.net, jkh@time.cdrom.com, security@FreeBSD.ORG Subject: Re: Scaring the bezeesus out of your system admin as a normal user: Message-ID: <199808211915.MAA18409@hub.freebsd.org> In-Reply-To: Your message of "Fri, 21 Aug 1998 12:38:59 EDT." <199808211638.MAA15257@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <199808211638.MAA15257@khavrinen.lcs.mit.edu>, Garrett Wollman wrote : } <<On Fri, 21 Aug 1998 09:37:28 -0700 (PDT), dima@best.net (Dima Ruban) said: } } >> It would be fairly simple for us to simply pass the user's credentials } >> along with the message, and then have syslogd differentiate. } } > I don't think it will solve the problem. Sending log message doesn't requir } e } > any special priveleges, so if you'll force logger to send user credentials, } > someone can simply write a program that will go around it. } } You missed the point. Credentials passed over PF_LOCAL sockets are by } design unforgeable. That doesn't address remote logging, however. -- Jon Hamilton hamilton@pobox.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199808211915.MAA18409>