Date: Thu, 16 Dec 1999 16:31:15 -0500 (EST) From: Matt Behrens <matt@zigg.com> To: Tim Tsai <tim@futuresouth.com> Cc: Robert Watson <robert+freebsd@cyrus.watson.org>, freebsd-security@FreeBSD.ORG Subject: Re: From BugTraq - FreeBSD 3.3 xsoldier root exploit (fwd) Message-ID: <Pine.BSF.4.21.9912161629420.45027-100000@megaweapon.zigg.com> In-Reply-To: <19991216152548.A21327@futuresouth.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Thu, 16 Dec 1999, Tim Tsai wrote:
> How about just:
>
> HAS_SETUID = {no, user[s]}
>
> example:
>
> HAS_SETUID = root
> HAS_SETUID = no
> HAS_SETUID = dialer uucp
> HAS_SETUID = games
I would suggest a slight modification on that, just in case we ever have a
user named ``no'':
HAS_SETUID = {NO, ...}
i.e.
HAS_SETUID = root
HAS_SETUID = NO
etc.
Matt Behrens <matt@zigg.com>
Owner/Administrator, zigg.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (FreeBSD)
Comment: For info see http://www.gnupg.org
iD8DBQE4WVol+xq4JbgNGlMRAuz6AJ96/y4zNlALjOpe5DzjEnsS5Iy0FACeLIwf
5R2UzL/KdPFW3h81iKZO0ck=
=MV2s
-----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.9912161629420.45027-100000>