netbsd-bugs: bin/36319: rpcinfo -p requires root privileges

Subject: bin/36319: rpcinfo -p requires root privileges
To: None <gnats-admin@netbsd.org, netbsd-bugs@netbsd.org>
From: None <mlelstv@serpens.de>
List: netbsd-bugs
Date: 05/13/2007 21:00:00

>Number:         36319
>Category:       bin
>Synopsis:       rpcinfo -p requires root privileges
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    bin-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun May 13 21:00:00 +0000 2007
>Originator:     Michael van Elst
>Release:        NetBSD 4.0_BETA2
>Organization:
-- 
                                Michael van Elst
Internet: mlelstv@serpens.de
                                "A potential Snark may lurk in every tree."
>Environment:
	
	
System: NetBSD henery 4.0_BETA2 NetBSD 4.0_BETA2 (HENERY) #2: Sat May 12 00:13:17 CEST 2007 mlelstv@henery:/home/netbsd4/obj/home/netbsd4/src/sys/arch/i386/compile/HENERY i386
Architecture: i386
Machine: i386
>Description:
rpcinfo -p retrieves a list of RPC port bindings maintained by rpcbind.
This query is done through a UNIX domain socket by default but which
is only accessible by root.

A query on the localhost INET port however isn't protected.

This change was introduced when UNIX domain sockets honored the
umask when created by bind(2).

>How-To-Repeat:
rpcinfo -p
rpcinfo: can't contact rpcbind: RPC: Remote system error - Permission denied

>Fix:
Make rpcbind explicitely give mode 777 to the UNIX domain socket
after binding.

>Unformatted: