On Wed, Jan 17, 2001 at 07:47:23AM +0100, Walter W. Hop wrote:
The exploit managed to start inetd, camped on the specified port
I guess, if it doesn't exist already, that it wouldn't be so hard to
create a small patch to the kernel, so that only processes owned by root,
or a certain
On Wed, Jan 17, 2001 at 10:33:30AM +0200, Peter Pentchev wrote:
I've actually been thinking along the lines of something like that.
A bit more strict access control though - bind() on AF_INET and/or AF_INET6
disabled by default, except for certain uid/sockaddr pairs. A kernel module
keeping
On Wed, Jan 17, 2001 at 12:18:42AM -0500, [EMAIL PROTECTED] wrote:
Why is crontab suid root?
I say to myself "To update /var/cron/tabs/ and to signal cron".
Could crontab run suid 'cron'?
If those are the only two things it needs to do, run cron as
gid 'cron' and make /var/cron/tabs/
On Wed, Jan 17, 2001 at 10:17:03AM +, David Malone wrote:
On Wed, Jan 17, 2001 at 10:33:30AM +0200, Peter Pentchev wrote:
I've actually been thinking along the lines of something like that.
A bit more strict access control though - bind() on AF_INET and/or AF_INET6
disabled by
On Wed, Jan 17, 2001 at 10:28:22AM +, David Malone wrote:
On Wed, Jan 17, 2001 at 12:18:42AM -0500, [EMAIL PROTECTED] wrote:
Why is crontab suid root?
I say to myself "To update /var/cron/tabs/ and to signal cron".
Could crontab run suid 'cron'?
If those are the only two
On Tue, Jan 16, 2001 at 11:34:09PM -0600, Michael C . Wu wrote:
| Ok I'm trying to make a port of the IrDA stack on Linux to FreeBSD.
| I've now written the driver for the chipset on my laptop, and I am ready
| with that to pass data to an upper layer.
Basically, we really do not want the
..or did you mean some kind of unintended/faulty behavior? Yes,
I ment unintended.
running crontab setgid does open a window of opportunity for errors,
but no more, I think, than running it setuid, as it currently is.
True - but I'd say it provides a false sense of security, which
might be
Hi there - thansk for those suggestions for books the other day;
once the post-Christmas overdraft gets cleared, I'm off to the shops.
In the emantime, I wondered if anyone knew a way to see what had changed in STABLE,
other than 'cvsup... | tee logfile' - /usr/src/UPDATING doesn't change
Matt Dillon wrote:
I was doing some installworlds and got a bunch of 'gzcat: Broken pipe'
errors at the very end when it was doing 'makewhatis' on various manual
directories.
It also only happens if you are running ssh to logon to the computer
doing the makewhatis. You can
mouss wrote:
and you must make sure your kernel is compiled with
options CD9660
Err... no. The kld gets autoloaded if the kernel doesn't have cd9660
compiled-in.
--
Daniel C. Sobral(8-DCS)
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
"There
Jordan Hubbard wrote:
Go for it! We did a version of him here holding a smoking AK-47 and
looking positively demented and it was one of the most popular
renderings at the office. :-)
And the reason it never circulated outside that office is...? :-)
--
Daniel C. Sobral
"Michael R. Wayne" wrote:
Recommendation:
A number of the executables located in /sbin and /usr/sbin are
never going to be invoked for any legitimate use by anyone other
than the superuser. In particular, servers such as portmap and
inetd run by non-root users are unlikely to
On Wed, Jan 17, 2001 at 10:51:01AM +, Rasputin wrote:
Hi there - thansk for those suggestions for books the other day;
once the post-Christmas overdraft gets cleared, I'm off to the shops.
In the emantime, I wondered if anyone knew a way to see what had changed in STABLE,
other than
In message [EMAIL PROTECTED], "Daniel C. Sobral" writes:
and you must make sure your kernel is compiled with
options CD9660
Err... no. The kld gets autoloaded if the kernel doesn't have cd9660
compiled-in.
The error message that is printed is misleading though, and gives the
impression that
You may also want to talk to:
Roger Hardiman [EMAIL PROTECTED]
who expressed an interest in doing IrDA last June..
probably also worth puting out a general call for interested parties.
Mark Santcroos wrote:
Then just look at the drivers for various line cards
such as the if_sr.c
file and
Thus spake Eric Melville ([EMAIL PROTECTED]):
Should I send-pr this thing too, or is just sending it to -hackers enough?
To -audit, in general.
if (flags ISKERNEL) {
- snprintf(buf, sizeof(buf), "%s: %s", bootfile, msg);
+ /* ignore path to kernel */
+
Just checking in to see how the progress was going on this port. I guess by
now you can tell i'm pretty interested. I wish I had the skills to offer
some help to you guys...if you want another beta tester though, i'd be glad
to put it on my system and run what ever tests you would like.
I've
f f [EMAIL PROTECTED] writes:
This raises the limits but when I compile the IRCd and
have the (hard limit) to 4096 or 8192 or even higher
the error comes back and says its still stuck on 1064
You need to recompile your ircd with FD_SETSIZE set at least as high
as your kern.maxfiles.
Someone
BTW, for anyone wanting to start a fresh similar thread, we have
[EMAIL PROTECTED]
but as it's here for now:
"Ras-Sol" wrote:
Am I the only one who thinks that he's just too cute?
I mean- I view FreeBSD as a potent force that follows it's directives with
razorlike precision and
On Wed, Jan 17, 2001 at 05:43:40AM -0800, Julian Elischer wrote:
You may also want to talk to:
Roger Hardiman [EMAIL PROTECTED]
who expressed an interest in doing IrDA last June..
probably also worth puting out a general call for interested parties.
I'll keep that in mind,
"Julian Stacey [EMAIL PROTECTED]" [EMAIL PROTECTED] writes:
Penguin mascot has enough advantages over Chuck already !
Then why do I get this urge to go bowling every time I see Tux?
DES
--
Dag-Erling Smorgrav - [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with
All,
Never mind, problem found. A logic bug was preventing me from
setting PROT_READ which was necessary even though these are
write-only registers.
Thanks,
-JohnG
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
Peter Pentchev writes:
On Wed, Jan 17, 2001 at 07:47:23AM +0100, Walter W. Hop wrote:
The exploit managed to start inetd, camped on the specified port
I guess, if it doesn't exist already, that it wouldn't be so hard to
create a small patch to the kernel, so that only processes
I am using FreeBSD 3.2, and all the sample drivers in /usr/src/sys/pci/*.c
uses pci_map_int().
How can I debug it in 3.2 to know what the OS thinks when the interrupts
come in and OS hangs?
Thanks again,
-Howie
-Original Message-
From: Mike Smith [mailto:[EMAIL PROTECTED]]
Sent:
I am writing a simple, I/O only device driver (no lectures about /dev/io
please ;). It has not PnP abilities, and I have run into the following
problem with bus_set_resource():
static int das1400adc_isa_probe(device_t dev)
{
struct das1400adc_softc *sc = device_get_softc(dev);
On Wed, 17 Jan 2001 18:06:57 +0300
"Andrey Simonenko" [EMAIL PROTECTED] said:
simon When IPv6 Firewall was added to FreeBSD release? Please tell
simon __FreeBSD_version of that release.
Since 4.0-RELEASE.
simon I'm going to add IPv6 Firewall support to IP Accounting Daemon
simon
On Tue, 16 Jan 2001, Alan Clegg wrote:
http://www.svaha.net/daemon/index.html
BUT HIS NAME IS NOT CHUCK, DAMNIT!
Indeed. Its on her list of things to fix on the page.
--
| Matthew N. Dodd | '78 Datsun 280Z | '75 Volvo 164E | FreeBSD/NetBSD |
| [EMAIL PROTECTED] | 2 x '84 Volvo
On 17 Jan 2001, at 10:51, Rasputin wrote:
Maybe something like freshports for branches other than ports?
That is underway. The project development can be view at
http://fp2.unixathome.org/. FreshPorts2 has the goal of doing for cvs-
all what FreshPorts does for ports. A guess is that we
Hello!
I have FreeBSD 4.1 release. My computer is a laptop, so I use
pccards. I found that with /stand/sysinstall the lan can be configured
automatically, but for pccards it doesn't work. So, after a debugging of
the scripts (just because I like automation and ease of use) I found a
:Matt Dillon wrote:
:
: I was doing some installworlds and got a bunch of 'gzcat: Broken pipe'
: errors at the very end when it was doing 'makewhatis' on various manual
: directories.
:
:It also only happens if you are running ssh to logon to the computer
:doing the makewhatis. You
At 21:16 16/01/01 -0500, Robert Watson wrote:
The nice thing about "localhost" is that it already appears in
/etc/hosts, and is a relatively reserved name, so unlikely to conflict too
much based on resolution order. I.e., amnesiac.res.cmu.edu is not an
unlikely name.
sure, but I consider that
Hi,
1. Is there any performance/efficiency gained when read and write
operations on multiple sockets are grouped together? That is, after
the I/O multiplexer function returns (i.e. select/poll/kevent), all
read operations on sockets are done together (say, encapsulated by
a
False alarm : a reinstall of a fresh 4.2-R from a CD-ROM cured
everything (I thought I was careful when upgrading via make world ;-))
Peter Jeremy wrote:
On Mon, 15 Jan 2001 23:01:15 +0100, Thierry Herbelot [EMAIL PROTECTED]
wrote:
I've got a little application at work which can "just
Jamie Heckford [EMAIL PROTECTED] writes:
In all honesty, I am just looking for something to play
with and see how fast FreeBSD can go.
I'd say about 2.8 m/s/s, given sufficient height.
DES
--
Dag-Erling Smorgrav - [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with
Dag-Erling Smorgrav [EMAIL PROTECTED] writes:
Jamie Heckford [EMAIL PROTECTED] writes:
In all honesty, I am just looking for something to play
with and see how fast FreeBSD can go.
I'd say about 2.8 m/s/s, given sufficient height.
Doh! I mean 9.8 m/s/s, of course.
DES
--
Dag-Erling
On Wed, Jan 17, 2001 at 06:43 +1000, Greg Black wrote:
Gerhard Sittig wrote:
In http://www.freebsd.org/cgi/query-pr.cgi?pr=24358 ("/etc/rc
variables for cron(8)") I suggest how to provide knobs to
pass parameters to cron as well as to switch to a different
cron executable, while of
-On [20010117 17:00], David E. Cross ([EMAIL PROTECTED]) wrote:
Given that code, I get the following attach messages from the kernel:
"das1400adc2: CIO-DAS1400-ADC at port 0x310-0x312 irq 5 drq 1,5 on isa0"
Uhm... I set neither the IRQ nor the drq... where does it get these from, and
On 17 Jan 2001, at 18:48, Gerhard Sittig wrote:
I'm just editing the PR with the cron patches to "catch up" with
OpenBSD in this respect (stating that it doesn't handle DST, but
has benefits whenever one's clock is jumping or cron waking up
too late and _could_ be extended to handle DST).
On Wed, 17 Jan 2001, mouss wrote:
At 21:16 16/01/01 -0500, Robert Watson wrote:
The nice thing about "localhost" is that it already appears in
/etc/hosts, and is a relatively reserved name, so unlikely to conflict too
much based on resolution order. I.e., amnesiac.res.cmu.edu is not an
-On [20010115 07:25], Warner Losh ([EMAIL PROTECTED]) wrote:
In message [EMAIL PROTECTED] Robert Lipe writes:
: I can't say I gather that from the man page from bus_alloc_resource
: at all. The restriction of RF_SHAREABLE applying only to IRQs and
: the exclusive nature of this call (one per
At 07:47 17/01/01 +0100, Walter W. Hop wrote:
The exploit managed to start inetd, camped on the specified port
I guess, if it doesn't exist already, that it wouldn't be so hard to
create a small patch to the kernel, so that only processes owned by root,
or a certain group of users (let's
Gerhard Sittig wrote:
I'm just editing the PR with the cron patches to "catch up" with
OpenBSD in this respect (stating that it doesn't handle DST, but
has benefits whenever one's clock is jumping or cron waking up
too late and _could_ be extended to handle DST). Therein I
suggest to
-
In message [EMAIL PROTECTED] Trent Nelson writes:
: 1. Is there any performance/efficiency gained when read and write
: operations on multiple sockets are grouped together? That is, after
: the I/O multiplexer function returns (i.e. select/poll/kevent), all
: read operations on
Hajimu UMEMOTO schrieb:
Hi,
I wish to obtain number of processes forked since boot from userland.
So, I made a patch to intend to commit.
Any comment?
I have done a similar approach. I was inspired by the "vmstat -s" output of
Solaris.
Therefor my solution was integrated into the vmmeter
You're doing this "all wrong". 8)
If you know what the device's settings are, you want an identify routine
which will create the device instance and set up resources for it.
If you want the user to be able to tweak the settings, you want a set of
device hints and a normal ISA probe routine.
Thank you...
After a couple of hours, Jon Chen and I have figured out most of what you
just said :P :)
How would one use hints with a kld?
--
David Cross | email: [EMAIL PROTECTED]
Lab Director | Rm: 308 Lally Hall
Rensselaer
Thank you...
After a couple of hours, Jon Chen and I have figured out most of what you
just said :P :)
How would one use hints with a kld?
Badly. 8( You can only really set them with the loader right now.
There are a couple of kernel datastores that need some tweaking; the
Thank you...
After a couple of hours, Jon Chen and I have figured out most of what you
just said :P :)
How would one use hints with a kld?
Badly. 8( You can only really set them with the loader right now.
There are a couple of kernel datastores that need some tweaking; the
+---[ Dag-Erling Smorgrav ]--
| Dag-Erling Smorgrav [EMAIL PROTECTED] writes:
| Jamie Heckford [EMAIL PROTECTED] writes:
| In all honesty, I am just looking for something to play
| with and see how fast FreeBSD can go.
| I'd say about 2.8 m/s/s, given sufficient
On Wed, Jan 17, 2001 at 10:45:57AM +, David Malone wrote:
True - but I'd say it provides a false sense of security, which
might be more damaging than the extra security provided against
read-only exploits in crontab.
That's silly. Group tty can be leveraged to provide more privilege,
On Thu, Jan 18, 2001 at 01:07:35AM +, void wrote:
True - but I'd say it provides a false sense of security, which
might be more damaging than the extra security provided against
read-only exploits in crontab.
That's silly. Group tty can be leveraged to provide more privilege,
but
In message [EMAIL PROTECTED] "David E. Cross" writes:
: How would one use hints with a kld?
Load the hints at boot time and hope you get it right. Other than
that, it is bog simple. We use klds for all our drivers at Timing
Solutions and load the hints at boot time.
There's no way to change
Warner Losh wrote:
In message [EMAIL PROTECTED] "David E. Cross" writes:
: How would one use hints with a kld?
Load the hints at boot time and hope you get it right. Other than
that, it is bog simple. We use klds for all our drivers at Timing
Solutions and load the hints at boot time.
Mark Santcroos wrote:
On Wed, Jan 17, 2001 at 05:43:40AM -0800, Julian Elischer wrote:
I've been looking alot at other drivers already.
My device driver is heavily based on the scheme in the example. But I've
made it a module so I can develop it outside the source tree.
the sample
Hi,
I've kept on forgetting to apply a patch similar to this one.
"make buildkernel" currently fails if a "make buildworld" has not
previously been done on the machine (and still has the populated object
environment) because OBJFORMAT_PATH is explicitly set to only use
${WORLDTMP}/usr/libexec.
55 matches
Mail list logo
