Date: Fri, 22 Sep 2000 23:42:25 +0200 From: Neil Blakey-Milner <nbm@mithrandr.moria.org> To: Warner Losh <imp@village.org> Cc: Lyndon Nerenberg <lyndon@orthanc.ab.ca>, freebsd-security@FreeBSD.ORG Subject: Re: sysinstall DOESN'T ASK, dangerous defaults! Message-ID: <20000922234224.A34348@mithrandr.moria.org> In-Reply-To: <200009222139.PAA71726@harmony.village.org>; from imp@village.org on Fri, Sep 22, 2000 at 03:39:18PM -0600 References: <20000922233318.A34189@mithrandr.moria.org> <200009222026.OAA71131@harmony.village.org> <200009222122.e8MLMG117534@orthanc.ab.ca> <20000922233318.A34189@mithrandr.moria.org> <200009222139.PAA71726@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri 2000-09-22 (15:39), Warner Losh wrote: > In message <20000922233318.A34189@mithrandr.moria.org> Neil Blakey-Milner writes: > : Maybe you can give me some clue - why is rsh and login suid-root? Can > : they function without it? > > No. Well, the kerberos support works, but they need to be suid root > to bind to low ports. That's part of what makes the normal protcol so > lame. Yeah, my brain eventually caught it - it's trying to tell the other system that the user isn't just pretending to be someone else. Ick. Neil -- Neil Blakey-Milner Sunesi Clinical Systems nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000922234224.A34348>