[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: dhcpd - non root user

To: norter@poczta.onet.pl
Subject: Re: dhcpd - non root user
From: Gregory Steuck <greg@nest.cx>
Date: 03 Jun 2002 14:34:16 -0700
Cc: misc@openbsd.org
References: <3CF9EB28.27370.303D87@localhost>
User-Agent: Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.4 (Honest Recruiter)

>>>>> "norter" == norter  <norter@poczta.onet.pl> writes:

    norter> hi how about makin dhcpd run as non-root user with this
    norter> patch ???

I imagine that's the one:
http://www.episec.com/people/edelkind/patches/dhcp/dhcp-2.0+paranoia.patch

Shouldn't chdir go _before_ chroot? At least that's how peolpe often do
it. You also need to do a fair bit of setup to create bpf devices and
config files.

Other than that I am running dhcpd with a variation of this patch. No
side effects I know of.

Bad thing is: dhcpd keeps a raw socket open. So whoever breaks into
dhcpd will get to use that. Anybody can comment on the exposure of the system
when the attacker has access to a socket like this:
fstat:
dhcpd    dhcpd      23324    7* internet raw icmp 0xe0bbbd00

Systrace policy for that puppy anybody?

References:
- dhcpd - non root user
  - From: norter@poczta.onet.pl

Prev by Date: FW: nating incomming IPSec connections?
Next by Date: PPTPd & pf issues...
Prev by thread: dhcpd - non root user
Next by thread: rp-pppoe compile problems
Index(es):
- Date
- Thread