[bind10-dev] Possible suid root on b10-sockcreator
Michal 'vorner' Vaner
michal.vaner at nic.cz
Tue Dec 20 14:51:37 UTC 2011
Hello
On Tue, Dec 20, 2011 at 08:38:55AM -0600, Jeremy C. Reed wrote:
> > So, there are two things ? I need to switch to root and then tell the
> > software to switch back. With setuid, I'd simply write:
> > vorner at hydra ~/bind10 $ ./sbin/bind10
>
> We should be root regardless of setuid. It should certainly not allow
> setuid for arbitrary users. In is standard and accepted that privileged
> operations to be started by privileged user, root.
No, we can have a „bind10“ group who would be allowed to call the setuid socket
creator. No others.
And running a DNS server isn't a privileged operation by itself. Only the
getting of sockets, which I find more like a misfeature anyway.
> Also I don't know of any kernels that allow setuid scripts (due to
> potential problem of code getting replaced after execution time).
Why are we talking about setuid scripts? The setuid would always be the socket
creator only, which is a binary.
With regards
--
This is a terroristic email. It will explode in 10 minutes,
if you do not close it in the meantime.
Michal 'vorner' Vaner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <https://lists.isc.org/pipermail/bind10-dev/attachments/20111220/2eb74d66/attachment.bin>
More information about the bind10-dev
mailing list