Date: Mon, 27 Nov 2000 22:16:57 -0800 From: Alfred Perlstein <bright@wintelcom.net> To: Warner Losh <imp@village.org> Cc: Robert Watson <rwatson@FreeBSD.org>, Peter Wemm <peter@netplex.com.au>, "Brian F. Feldman" <green@FreeBSD.org>, obrien@FreeBSD.org, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/usr.sbin/inetd builtins.c Message-ID: <20001127221656.Z8051@fw.wintelcom.net> In-Reply-To: <200011280529.WAA07456@harmony.village.org>; from imp@village.org on Mon, Nov 27, 2000 at 10:29:00PM -0700 References: <Pine.NEB.3.96L.1001127004343.36087A-100000@fledge.watson.org> <200011280529.WAA07456@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
* Warner Losh <imp@village.org> [001127 21:29] wrote: > In message <Pine.NEB.3.96L.1001127004343.36087A-100000@fledge.watson.org> Robert Watson writes: > : Presumably the only really correct solution here is to: > : > : 1) Set effective process rights to that of the user in question using > : setusercontext() > : 2) Open the file using open() > : 3) fstat() the file to determine that it is regular and sane > : 4) Proceed with operations > > I'm not sure I understand the need for #3. If the effective process > rights are what you want, then the kernel will enforce protections at > #2. What's is regular and sane? Remeber you're still a system deamon, even if running as a user, being extra cautious never hurt anyone... ...except Linux. :) -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001127221656.Z8051>