Re: To the bind maintainer

To: debian-devel@lists.debian.org
Cc: debian-devel@lists.debian.org
Subject: Re: To the bind maintainer
From: md@linux.it (Marco d'Itri)
Date: Sat, 22 Jan 2000 21:55:35 +0100
Message-id: <[🔎] 20000122215535.D30104@wonderland.linux.it>
In-reply-to: <[🔎] Pine.LNX.3.96.1000121195149.13278B-100000@wakko.deltatee.com>; from jgg@ualberta.ca on Fri, Jan 21, 2000 at 07:55:23PM -0700
References: <[🔎] Pine.LNX.3.96.1000121195149.13278B-100000@wakko.deltatee.com>

On Jan 22, Jason Gunthorpe <jgg@ualberta.ca> wrote:

 >No it doesn't. You just run it as root and have it make the proper
 >capabilities syscalls before switching to not-root. You need the FS patch
 >if you want to do the above *without* changing bind's source.
This is useful only if you also use chroot.
If cracker gets UID 0 he can just edit /etc/shadow...

-- 
ciao,
Marco

Reply to:

References:
- Re: To the bind maintainer
  - From: Jason Gunthorpe <jgg@ualberta.ca>

Prev by Date: Re: To the bind maintainer
Next by Date: Re: potato testing: xdm vs gpm, samba changed?
Previous by thread: Re: To the bind maintainer
Next by thread: Re: To the bind maintainer
Index(es):
- Date
- Thread