[2281] in linux-security and linux-alert archive
[linux-security] Re: Programming ....
daemon@ATHENA.MIT.EDU (Dave)
Tue Nov 30 03:40:42 1999
Date: Sun, 28 Nov 1999 17:39:43 -0800 (PST)
From: Dave <dgriffi@cs.csubak.edu>
To: Linux Security <linux-security@redhat.com>
In-Reply-To: <177a01bf3843$e1c2fd80$0200a8c0@masala>
Message-Id: <Pine.OSF.4.05.9911281738310.19949-100000@pegasus.cs.csubak.edu>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Resent-From: linux-security@redhat.com
On Fri, 26 Nov 1999, Arni Raghu wrote:
> Hi,
> I am building my own TCP daemon for easing some routine admin stuff... I am
> no expert on security,. I would really appreciate it if someone sent me some
> pointers to writing TCP daemons that are hacker-proof( i know there is
> nothing like that...but I do not want to be making mistakes in coding that
> are well known.. ;)
>
> The daemon runs as root....so that is why I am woried....
You need to ask yourself "does this thing really need to run as root?" and
"how can I do this without running as root or using suid or sgid bits?"
--
David Griffith
dgriffi@cs.csubak.edu
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
