From owner-freebsd-security  Mon Dec 21 07:35:44 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id HAA06401
          for freebsd-security-outgoing; Mon, 21 Dec 1998 07:35:44 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ns1.yes.no (ns1.yes.no [195.204.136.10])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA06387;
          Mon, 21 Dec 1998 07:35:40 -0800 (PST)
          (envelope-from eivind@bitbox.follo.net)
Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218])
	by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id QAA11519;
	Mon, 21 Dec 1998 16:35:34 +0100 (CET)
Received: (from eivind@localhost)
	by bitbox.follo.net (8.8.8/8.8.6) id QAA14860;
	Mon, 21 Dec 1998 16:35:33 +0100 (MET)
Message-ID: <19981221163532.G14124@follo.net>
Date: Mon, 21 Dec 1998 16:35:32 +0100
From: Eivind Eklund <eivind@yes.no>
To: Dag-Erling Smorgrav <des@flood.ping.uio.no>
Cc: Matt Dillon <dillon@FreeBSD.ORG>, security@FreeBSD.ORG
Subject: Re: cvs commit: src/etc rc.conf
References: <199812190725.XAA05479@freefall.freebsd.org> <xzp67b5ft9e.fsf@flood.ping.uio.no> <19981221161110.E14124@follo.net> <xzpyao1ecvf.fsf@flood.ping.uio.no>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.93.2i
In-Reply-To: <xzpyao1ecvf.fsf@flood.ping.uio.no>; from Dag-Erling Smorgrav on Mon, Dec 21, 1998 at 04:25:08PM +0100
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Mon, Dec 21, 1998 at 04:25:08PM +0100, Dag-Erling Smorgrav wrote:
> Eivind Eklund <eivind@yes.no> writes:
> > ... unless you do a series of small modifications.  It is not as if
> > rescanning the interfaces is a _large_ task, or one that couldn't be
> > done by a forked out half of named
> 
> Umm, the problem isn't scanning interfaces, the problem is binding to
> them, which needs to be done by the parent, so you can't delegate
> interface rescanning to a child process. Or rather, you can, but it
> won't matter since at some point the child will need to communicate
> its results to the parent which will then attempt to bind to port 53
> on interfaces it's not yet bound to, for which it needs privs.

You don't need to have the parent bind the interface.  You use the
capability transfer support in BSD - you pass an fd over a local
socket, using SCM_RIGHTS.

This is described in the Stevens book, which is presently occupying
the space between your monitor and lamp (on the right side of the
monitor).  The implementation of this mechanism is in
sys/kern/uipc_socket.c, sys/kern/uipc_syscalls.c, and
sys/kern/uipc_usrreq.c.

Eivind.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message