search for: unprivilig

Hi All, The interface manual says - grant tables provide a generic mechanism sharing between domains. Subsequent lines suggest mechanism sharing between only unpriviliged domains. Can grant tables be used for this capability based shared memory communication between dom0 and domUs? Thanks ~psr -- pradeep singh rautela "proud to be a TUXedo, BSDemons you are a little late" - me _______________________________________________ Xen-devel mailing list...

Hi, I'm using the latest version of Samba in (kind-of) an embedded environment, which means 'glibc, but no shadow/pam/md5' my problem is is that samba doesn't give up root priviledges. I connect as an unpriviliged user, but the smbd associated with the connection is still associated with root. Has anyone had this problem? It's very undesirable, as all the access controls are pretty much useless. I have gone over the logs with debuglevel == 100, but smbd claims it gives up privilidges. Thanks! -dave

...cally. It feels quite silly to have to type the password locally becase the imapd does not know that the process is indeed a process of the user tzafrir. It has all the information it neeeds to check that. wu-imapd has something called "pre-authentication": the imapd is run by the user unpriviliged to access mail in the user's home directory. As a bonus this works quite nicely with ssh public key authentication. I know that at least mutt and pine support running a custom command for creating an imap connection. But then again, wu-imapd is built quite, well, differently. Any ideas? --...

...mba server. You still have to open # the tcp port 139 to allow remote access to SAMBA. FW_SERVICE_SAMBA="yes" [I am a little unsure about this last option. I am right in thinking that this enables the forwarding of SMB _from_ external networks? ] # 11.) # How is access allowed to high (unpriviliged [above 1023]) ports? # 7.) # Do you want to protect the firewall from the internal network? FW_PROTECT_FROM_INTERNAL="no" #It's a home LAN - only my 2 PCs on it! # 14.) # Which services accessed from the internet should be allowed to masqueraded # servers (on the internal network or...

...ividuals can obtain access to the web server. If the httpd services requests as user root, attackers can obtain root access. If the httpd is run in a chroot() environment, the attacker will be restricted to the chrooted environment. We strongly advise adminstrators to run their web servers as an unpriviliged user in an chrooted environment whenever possible. Vulnerable Systems ~~~~~~~~~~~~~~~~~~ Any system running the Apache httpd 1.1.1 or earlier, with the compile-time option mod_cookies enabled is vulnerable. To tell which web server software you are using, telnet to port 80 of the web server, a...

http://bugzilla.mindrot.org/show_bug.cgi?id=977 Summary: duplicate log entries when using "sshd -D -e" Product: Portable OpenSSH Version: 3.8p1 Platform: ix86 OS/Version: All Status: NEW Severity: normal Priority: P2 Component: sshd AssignedTo: openssh-bugs at mindrot.org