Re: radiusd-freeradius history and future
Scripsit Russell Coker <russell@coker.com.au>
> Maybe we should have a debconf option for whether the program in question is
> to be SETUID root or SETGID shadow? Then the minority of people who use NIS
> can have full functionality, while the majority of people who don't use NIS
> can have better security.
Would it be feasible to have the program be suid root, but start by
trying to parse /etc/nsswitch.conf and drop root privileges
immediately unless it finds NIS for passwd/shadow?
--
Henning Makholm "Vend dig ikke om! Det er et meget ubehageligt syn!"
Reply to: