From owner-freebsd-hackers Fri Jan 3 09:25:51 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id JAA03623 for hackers-outgoing; Fri, 3 Jan 1997 09:25:51 -0800 (PST) Received: from iafnl.es.iaf.nl (uucp@iafnl.es.iaf.nl [195.108.17.20]) by freefall.freebsd.org (8.8.4/8.8.4) with SMTP id JAA03616 for ; Fri, 3 Jan 1997 09:25:48 -0800 (PST) Received: by iafnl.es.iaf.nl with UUCP id AA28183 (5.67b/IDA-1.5 for hackers@freebsd.org); Fri, 3 Jan 1997 18:25:17 +0100 Received: (from wilko@localhost) by yedi.iaf.nl (8.7.5/8.6.12) id SAA00624; Fri, 3 Jan 1997 18:20:17 +0100 (MET) From: Wilko Bulte Message-Id: <199701031720.SAA00624@yedi.iaf.nl> Subject: Re: file locking / firewalling based on uid/gid To: jmb@freefall.freebsd.org (Jonathan M. Bresler) Date: Fri, 3 Jan 1997 18:20:17 +0100 (MET) Cc: avalon@coombs.anu.edu.au, proff@iq.org, hackers@freebsd.org In-Reply-To: <199701030443.UAA28355@freefall.freebsd.org> from "Jonathan M. Bresler" at Jan 2, 97 08:43:19 pm X-Mailer: ELM [version 2.4 PL24 ME8a] Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk As Jonathan M. Bresler wrote... > > Darren Reed wrote: > > > > In some mail from Julian Assange, sie said: > > [...] > > > # ipfw add pass tcp from any to any established gid inetd > > > # ipfw add padd tcp from any to any 21,79 setup in gid inetd > > > > (who needs sendmail to run as root now ?!) > > > > and have open() calls on those devices create sockets. > > > > sockfs anyone ? > > stevens and pendry called this "portals" > apply standard access control to the portals. > sendmail is uid/gid "sendmail" > chown sendmail.sendmail /p/net/tcp/localhost/25 > chmod 600 /p/net/tcp/localhost/25 And who does the chown() to allow users to get at their mail? Or am I missing something? Wilko _ ____________________________________________________________________ | / o / / _ Bulte email: wilko@yedi.iaf.nl - Arnhem, The Netherlands |/|/ / / /( (_) Do, or do not. There is no 'try' - Yoda --------------------------------------------------------------------------