On Wed, 22 Sep 2010 11:25:02 +0100 Owain Ainsworth <[email protected]> wrote:
> On Tue, Sep 21, 2010 at 06:32:50PM -0700, Matthew Dempsky wrote: > > /dev/tun* are already owned by root and mode 0600 by default, so it > > seems redundant to check suser() in tunopen(). > > Looks like vnd could have the same change for the same resons. > > If so i'll whip up the requisite two-liner. > > -0- > -- > Computers are useless. They can only give you answers. > -- Pablo Picasso > I can see potential reasons for changing the user on tun devices and so saw no problem at all. I wonder if it is better however to have the check at runtime for things like vnconfig, could having the wrong user jeopardise an encryption password at all?.
