36 messages in org.freebsd.freebsd-securityRe: Security Model/Target for FreeBSD...| From | Sent On | Attachments |
|---|---|---|
| Colman Reilly | Jul 5, 1997 3:43 am | |
| Adam Shostack | Jul 5, 1997 8:17 am | |
| Colman Reilly | Jul 5, 1997 2:33 pm | |
| Jordan K. Hubbard | Jul 5, 1997 4:47 pm | |
| Christopher Petrilli | Jul 6, 1997 11:27 am | |
| Jonathan M. Bresler | Jul 6, 1997 2:50 pm | |
| Brian Mitchell | Jul 6, 1997 3:20 pm | |
| Jonathan M. Bresler | Jul 6, 1997 5:13 pm | |
| Colman Reilly | Jul 7, 1997 1:45 am | |
| Duane H. Hesser | Jul 7, 1997 7:48 am | |
| Robert N Watson | Jul 7, 1997 10:08 am | |
| Brian Mitchell | Jul 7, 1997 10:58 am | |
| Adam Shostack | Jul 7, 1997 11:03 am | |
| Sean Eric Fagan | Jul 7, 1997 11:37 am | |
| Robert N Watson | Jul 7, 1997 11:46 am | |
| Jonathan M. Bresler | Jul 7, 1997 11:53 am | |
| Robert Watson | Jul 7, 1997 1:04 pm | |
| Kenneth Stailey | Jul 7, 1997 1:05 pm | |
| Brian Mitchell | Jul 7, 1997 1:38 pm | |
| pro...@suburbia.net | Jul 7, 1997 2:29 pm | |
| Jim Shankland | Jul 7, 1997 3:46 pm | |
| Daniel O'Callaghan | Jul 7, 1997 4:20 pm | |
| Mark Newton | Jul 7, 1997 4:47 pm | |
| Adam Shostack | Jul 7, 1997 5:58 pm | |
| Adam Shostack | Jul 7, 1997 6:09 pm | |
| Poul-Henning Kamp | Jul 7, 1997 11:10 pm | |
| Robert Watson | Jul 8, 1997 8:45 am | |
| Robert Watson | Jul 8, 1997 8:58 am | |
| Colman Reilly | Jul 8, 1997 12:33 pm | |
| Ollivier Robert | Jul 8, 1997 1:20 pm | |
| George Robbins | Jul 8, 1997 1:59 pm | |
| Mark Newton | Jul 8, 1997 5:29 pm | |
| Robert Watson | Jul 9, 1997 9:09 am | |
| Eivind Eklund | Jul 9, 1997 9:57 am | |
| David Holland | Jul 9, 1997 3:09 pm | |
| Wes Peters | Jul 9, 1997 10:07 pm |
| Subject: | Re: Security Model/Target for FreeBSD or 4.4? | |
|---|---|---|
| From: | Colman Reilly (care...@monoid.cs.tcd.ie) | |
| Date: | Jul 8, 1997 12:33:23 pm | |
| List: | org.freebsd.freebsd-security | |
[deleted stuff about changing sockets so that they could be bound to by groups/users]
With regards to gid vs. uid -- is either one of this preferable for any particular reason? gid may be more flexible, I guess, as it would allow multiple users to bind the same ports, but without having rights to each others processes, and as such allow a simpler minimum configuration.
I think that if someone where to do this sort of thing then it should be according to the normal UNIX rules: (READ,WRITE,EXECUTE)X(USER,GROUP,PUBLIC). I'm not sure execute means anything in this context.
This gives you maximal control, and you just default to the current behaviour. (I'd imagine a hash-table based implementation, which only incurs overhead when there are changed permissions. No hit in the hash table means default behaviour - open with port<1024 => fail for everyone except root.)
Colman