Re: inetd(8): security considerations

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: inetd(8): security considerations
From: Mouse <mouse%Rodents-Montreal.ORG@localhost>
Date: Mon, 3 Jul 2023 08:36:23 -0400 (EDT)

> There is one more thing I'd be inclined to add: when _serving_ a
> config as root[*], error if the configuration (including sourced
> chunks) is writable by someone else than root.

> What do you think?

A reasonable thing if it's an overridable default.  An extremely
annoying thing (albeit only occasionally) if it's non-overridable.

Also, I'm not sure how I'd modify that if the UID it's serving as is
someone other than root.

/~\ The ASCII				  Mouse
\ / Ribbon Campaign
 X  Against HTML		mouse%rodents-montreal.org@localhost
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Follow-Ups:
- Re: inetd(8): security considerations
  - From: tlaronde

References:
- inetd(8): security considerations
  - From: tlaronde

Prev by Date: Re: printf(1), sh(1), POSIX.2 and octal escape sequences
Next by Date: Re: printf(1), sh(1), POSIX.2 and octal escape sequences
Previous by Thread: inetd(8): security considerations
Next by Thread: Re: inetd(8): security considerations
Indexes:

Home | Main Index | Thread Index | Old Index