tech-security: Re: [secure@FREEBSD.LUBLIN.PL: FreeBSD (and other BSDs?) local root explot]

Subject: Re: [secure@FREEBSD.LUBLIN.PL: FreeBSD (and other BSDs?) local root explot]
To: None <tech-security@netbsd.org>
From: John Kohl <jtk@kolvir.arlington.ma.us>
List: tech-security
Date: 08/27/1999 11:37:23

  by redmail.netbsd.org with SMTP; 27 Aug 1999 15:37:29 -0000
	by kolvir.arlington.ma.us (8.8.8/JTK19980409) id LAA17505;
	Fri, 27 Aug 1999 11:37:23 -0400 (EDT)
Date: Fri, 27 Aug 1999 11:37:23 -0400 (EDT)
Message-Id: <199908271537.LAA17505@kolvir.arlington.ma.us>
From: John Kohl <jtk@kolvir.arlington.ma.us>
To: tech-security@netbsd.org
In-reply-to: <199908271457.OAA19930@orchard.arlington.ma.us> (message from
	Bill Sommerfeld on Fri, 27 Aug 1999 10:57:54 -0400)
Subject: Re: [secure@FREEBSD.LUBLIN.PL: FreeBSD (and other BSDs?) local root explot]

>>>>> "Bill" == Bill Sommerfeld <sommerfeld@orchard.arlington.ma.us> writes:

Bill> IMHO what the folks creating symlinks to not send their coredumps into
Bill> NFS "really" want is a per-process inherited attribute which i'll call
Bill> the "core filename format".

Yeah, I'd like to force them somewhere else on occasion.  Alas, putting
them into a directory other than u.u_cdir is probably asking for
trouble.  I'd say that setuid programs should dump the attribute and get
the default.

e.g. "/var/tmp/jtk-cores/%n.core" or "/etc/master.passwd"

-- 
==John Kohl <jtk@kolvir.arlington.ma.us>, <john_kohl@alum.mit.edu>
Home page: <http://people.ne.mediaone.net/jtk/>
Bicycling and Skiing to keep fit.