Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 3 Jan 1997 18:20:17 +0100 (MET)
From:      Wilko Bulte <wilko@yedi.iaf.nl>
To:        jmb@freefall.freebsd.org (Jonathan M. Bresler)
Cc:        avalon@coombs.anu.edu.au, proff@iq.org, hackers@freebsd.org
Subject:   Re: file locking / firewalling based on uid/gid
Message-ID:  <199701031720.SAA00624@yedi.iaf.nl>
In-Reply-To: <199701030443.UAA28355@freefall.freebsd.org> from "Jonathan M. Bresler" at Jan 2, 97 08:43:19 pm

next in thread | previous in thread | raw e-mail | index | archive | help
As Jonathan M. Bresler wrote...
> 
> Darren Reed wrote:
> > 
> > In some mail from Julian Assange, sie said:
> > [...]
> > > 	# ipfw add pass tcp from any to any established gid inetd
> > > 	# ipfw add padd tcp from any to any 21,79 setup in gid inetd
> > 

> > (who needs sendmail to run as root now ?!)
> > 
> > and have open() calls on those devices create sockets.
> > 
> > sockfs anyone ?
> 
> 	stevens and pendry called this "portals"

> 	apply standard access control to the portals.
> 	sendmail is uid/gid "sendmail"
> 	chown sendmail.sendmail /p/net/tcp/localhost/25 
> 	chmod 600 /p/net/tcp/localhost/25

And who does the chown() to allow users to get at their mail? 
Or am I missing something?

Wilko
_     ____________________________________________________________________
 |   / o / /  _  Bulte  email: wilko@yedi.iaf.nl - Arnhem, The Netherlands
 |/|/ / / /( (_) 	Do, or do not. There is no 'try' - Yoda
--------------------------------------------------------------------------



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199701031720.SAA00624>