Date: Tue, 24 Feb 2004 20:35:20 +1100 From: Peter Jeremy <peterjeremy@optushome.com.au> To: Colin Percival <colin.percival@wadham.ox.ac.uk> Cc: freebsd-current@freebsd.org Subject: Re: What to do about nologin(8)? Message-ID: <20040224093520.GA93117@server.vk2pj.dyndns.org> In-Reply-To: <6.0.1.1.1.20040223171828.03de8b30@imap.sfu.ca> References: <6.0.1.1.1.20040223171828.03de8b30@imap.sfu.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Feb 23, 2004 at 05:45:07PM +0000, Colin Percival wrote:
> I can see a number of possible options; I'd like to hear
>opinions on which would be the best.
...
8) Make nologin setgid to a suitably unprivileged group
and rely on rtld(1) to ignore LD_LIBRARY path & friends.
(setgid is less unsafe than setuid)
Pro: nologin remains dynamically linked in /sbin (avoiding
POLA breakage)
Con: Introduces an "unnecessary" setgid program
Peter
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040224093520.GA93117>