Re: About a rc.d script and "--user ${puser}"

To: Cem Kayali <cemkayali%eticaret.com.tr@localhost>
Subject: Re: About a rc.d script and "--user ${puser}"
From: Thor Lancelot Simon <tls%rek.tjls.com@localhost>
Date: Sun, 1 Feb 2009 14:19:35 -0500

On Sun, Feb 01, 2009 at 06:07:17PM +0200, Cem Kayali wrote:
>
> Hello!
>
> I noticed that a (pkgsrc) /etc/rc.d script has wheel permission although  
> it has command argument

What do you mean, "has wheel permission"?  Do you mean that the script's
permissions look like this:

        -rwxr-sr-x  1 root  wheel  0 Feb  1 14:11 foo.sh

Or like this?

        -rwxr-xr-x  1 root  wheel  0 Feb  1 14:11 foo.sh

Standard NetBSD kernels do not support setgid scripts, so the two
permissions are equivalent.  I do not understand why you think there is,
as you put it, "an internal security hole" in either case.

Thor

Follow-Ups:
- Re: About a rc.d script and "--user ${puser}"
  - From: Cem Kayali

References:
- About a rc.d script and "--user ${puser}"
  - From: Cem Kayali

Prev by Date: About a rc.d script and "--user ${puser}"
Next by Date: Re: About a rc.d script and "--user ${puser}"
Previous by Thread: About a rc.d script and "--user ${puser}"
Next by Thread: Re: About a rc.d script and "--user ${puser}"
Indexes:

Home | Main Index | Thread Index | Old Index