Re: /etc/opiekeys permissions?

From: Peter Jeremy (PeterJeremy_at_optushome.com.au)
Date: 07/21/05

Next message: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"

Previous message: Andrey V. Elsukov: "Re: Ancient FreeBSD releases online"
In reply to: Eygene A. Ryabinkin: "/etc/opiekeys permissions?"
Next in thread: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"
Reply: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Thu, 21 Jul 2005 17:34:40 +1000
To: "Eygene A. Ryabinkin" <freebsd@rea.mbslab.kiae.ru>

On Thu, 2005-Jul-14 14:14:42 +0400, Eygene A. Ryabinkin wrote:
> Playing with OPIE I've noticed that the /etc/opiekeys have mode 644.
...
> But now it seems to be vulnurable again. Are there any programs that are
>run in non-root mode and they do want to use OPIE? If there is no such
>programs, why the permissions are so strange?

Since an OPIE password can only be used once, any program that uses OPIE
needs to be able to read and write /etc/opiekeys. There is no valid reason
for a program to just want to read the file.

-- 
Peter Jeremy
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"

Next message: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"

Previous message: Andrey V. Elsukov: "Re: Ancient FreeBSD releases online"
In reply to: Eygene A. Ryabinkin: "/etc/opiekeys permissions?"
Next in thread: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"
Reply: Eygene A. Ryabinkin: "Re: /etc/opiekeys permissions?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

unix.derkeiler.com > Mailing-Lists > FreeBSD > hackers > 2005-07