Redhat 7.0 xinet/tftpd/bootpd with RTEMS - works
Eric Norum
eric.norum at usask.ca
Fri Feb 2 22:45:43 UTC 2001
"Aaron J. Grier" wrote:
>
> On Fri, Feb 02, 2001 at 08:56:58AM -0600, Eric Norum wrote:
>
> > The fix is simple -- make /usr/sbin/in.tftpd setuid-root.
> >
> > I had a look at the TFTP daemon source. The daemon is designed to
> > operate setuid-root. It relinquishes root privileges as soon as the
> > chroot has been done.
>
> an alternative to setuid is to change the user in.tftpd is run as in
> inetd.conf... (or whatever it's called in redhat 7.)
Yes, but I feel a little uneasy about running in.tftpd as root -- I had
my machine hacked into a few weeks ago so I'm pretty sensitive to
security issues right now.....
The setuid approach is safer since in.tftpd gives up its super-user
abilities before handling any file transfer requests.
--
Eric Norum eric.norum at usask.ca
Department of Electrical Engineering Phone: (306) 966-5394
University of Saskatchewan FAX: (306) 966-5407
Saskatoon, Canada.
More information about the users
mailing list