diff options
| author | dm <dm@cvs.openbsd.org> | 1996-02-27 03:31:22 +0000 |
|---|---|---|
| committer | dm <dm@cvs.openbsd.org> | 1996-02-27 03:31:22 +0000 |
| commit | e4dbdd3a19a2f75d54142f13bcadfed0617a7d12 (patch) | |
| tree | cc9a00a65232b4c1cd963f2e073a4b77d00830f4 | |
| parent | 5030cab33594e9a7ab9c2b55b0714e262d6a7dfb (diff) | |
Identd ras as nobody.kmem. Changed it to root.
Running anything as nobody.kmem allows any "nobody" process to get into
the kmem group through ptrace(). Kmem is a privileged enough group that
we might as well just run identd as root.
| -rw-r--r-- | etc/inetd.conf | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/inetd.conf b/etc/inetd.conf index 50deca1405a..adb7ebb3eb7 100644 --- a/etc/inetd.conf +++ b/etc/inetd.conf @@ -10,7 +10,7 @@ login stream tcp nowait root /usr/libexec/rlogind rlogind #exec stream tcp nowait root /usr/libexec/rexecd rexecd #uucpd stream tcp nowait root /usr/libexec/uucpd uucpd finger stream tcp nowait nobody /usr/libexec/fingerd fingerd -ident stream tcp wait nobody.kmem /usr/libexec/identd identd -w -t60 -l -o -e -N +ident stream tcp wait root /usr/libexec/identd identd -w -t60 -l -o -e -N tftp dgram udp wait root /usr/libexec/tftpd tftpd -s /tftpboot comsat dgram udp wait root /usr/libexec/comsat comsat ntalk dgram udp wait root /usr/libexec/ntalkd ntalkd |