Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id ; Tue, 24 Apr 2001 10:49:29 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id ; Tue, 24 Apr 2001 10:49:19 -0400 Received: from theirongiant.weebeastie.net ([203.62.148.50]:35085 "EHLO theirongiant.weebeastie.net") by vger.kernel.org with ESMTP id ; Tue, 24 Apr 2001 10:49:09 -0400 Date: Wed, 25 Apr 2001 00:47:10 +1000 From: CaT To: Alan Cox Cc: Alexander Viro , "Mohammad A. Haque" , ttel5535@artax.karlin.mff.cuni.cz, "Mike A. Harris" , linux-kernel@vger.kernel.org Subject: Re: [OFFTOPIC] Re: [PATCH] Single user linux Message-ID: <20010425004710.F1245@zip.com.au> In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from alan@lxorguk.ukuu.org.uk on Tue, Apr 24, 2001 at 03:37:34PM +0100 Organisation: Furball Inc. Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Apr 24, 2001 at 03:37:34PM +0100, Alan Cox wrote: > What role requires priviledge once the port is open ? > > DNS lookup does not > Spooling to disk does not > Accepting a connection from a client does not > Doing peercred auth with a client does not > Copying spool articles matching the peercred to the client does not Running procmail as the user who is to receive the email for local mail delivery as running it with gid mail (for eg) would allow one user to modify another's mail. (just a thought - the above's valid with sendmail at least) -- CaT (cat@zip.com.au) *** Jenna has joined the channel. speaking of mental giants.. me, a giant, bullshit And i'm not mental - An IRC session, 20/12/2000 - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/