Subject: pkg/23528: chat/dircproxy runs as root by default; insecure; change init script to avoid it
To: None <>
From: None <,>
List: netbsd-bugs
Date: 11/21/2003 23:15:52
>Number:         23528
>Category:       pkg
>Synopsis:       see subj.
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Nov 21 23:16:00 UTC 2003
>Originator:     Michal Pasternak
>Release:        NetBSD 1.6.1
Good People With Bad Reputation
System: NetBSD 1.6.1 NetBSD 1.6.1 (GENERIC) #0: Tue Apr 8 12:05:52 UTC 2003 i386
Architecture: i386
Machine: i386

	    dircproxy runs as root by default.
	    it doesn't need root privileges; it can successfully do it's 
	    job by running as nobody
	    i have tested it as nobody. works. should be changed to avoid
	    eventual compromise of hosts running dircproxy.

	       install dircproxy
	       startup dircproxy via rc.d script
	       lookup dircproxy via ps(1)
     update rc.d script: change command="/usr/pkg/bin/${name}" to:

command="su -m nobody -c /usr/pkg/bin/${name}"