Date: Mon, 21 Dec 1998 12:12:17 -0800 (PST) From: Matthew Dillon <dillon@apollo.backplane.com> To: Dag-Erling Smorgrav <des@flood.ping.uio.no> Cc: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc rc.conf Message-ID: <199812212012.MAA47267@apollo.backplane.com>
next in thread | raw e-mail | index | archive | help
:Complaints? The naked truth is that it will not work in any but the
:simplest setups, unless you add code to named to temporarily regain
:privs before updating the pid file or rescanning interfaces. Doing so
:will void any security the sandbox may give you, since it will make it
:possible for hypothetical buffer overflow exploits to regain privs.
My estimate is that the sandbox would work just fine on 99% of the
FreeBSD installations out there. The basic problem is that Paul Vixie
doesn't take sandboxes seriously so he doesn't bother fixing the crappy
interface scanning or UDP binding code to allow the use of a single IP.
Instead, bind goes out of its way to fart around with interface scanning
and rescanning and all sorts of shit that it doesn't need to do.
-Matt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199812212012.MAA47267>