Re: drop privileges to nobody is pinging as root
This is a discussion on Re: drop privileges to nobody is pinging as root within the lucky.openbsd.tech forums, part of the OpenBSD category; --> Theo de Raadt wrote: > Han wrote: > > Theo de Raadt wrote: > > > I still do ...
| |||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-22-2008, 01:09 PM
| ||||
| ||||
 Re: drop privileges to nobody is pinging as root Theo de Raadt wrote: > Han wrote: > > Theo de Raadt wrote: > > > I still do not agree at all with doing this. Sorry. "nobody" > > > is special, and should not be misused like this. > > > > OK, I can get along with that idea. Is there a more suitable > > account for dropping privileges? > > No. Of course not. Any account has some privilege. > > > Should a `_drop' account be > > created for this and other instances of dropping privileges for > > dangerous actions by root? > > Oh, so that if 2 programs are running at the same time, they now > have the same uid, and they can now "play with each other"? > > Every uid still has some permissions. > > > Or is this construction really not necessary? > > I really don't see what is gained. Alright, thanks for your time. On a sidenote, I would like to recommend choosing neutral formulations. # Han      |
 |
« Re: drop privileges to nobody is pinging as root
|
Re: drop privileges to nobody is pinging as root »
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT. The time now is 10:26 AM.
