Bugtraq mailing list archives

Re: Solaris 2.6 and sockets

From: deraadt () CVS OPENBSD ORG (Theo de Raadt)
Date: Sun, 5 Oct 1997 00:27:36 -0600

I have noticed strange things happening under Solaris 2.6 (final release)
Any Unix socket created by ANY application has permissions 4777!!!!
ie: srwxrwxrwx 1 root root      0 Oct   3 21:22 mysql.sock
Check out your /tmp directory :)


I believe this affects almost everyone.  I fixed this a while back.

RCS file: /cvs/src/sys/kern/uipc_usrreq.c,v
...
revision 1.3
date: 1996/06/25 21:26:11;  author: deraadt;  state: Exp;  lines: +2 -2
consider umask for AF_UNIX bind()


Index: uipc_usrreq.c
===================================================================
RCS file: /cvs/src/sys/kern/uipc_usrreq.c,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- uipc_usrreq.c       1996/03/03 17:20:22     1.2
+++ uipc_usrreq.c       1996/06/25 21:26:11     1.3
@@ -418,7 +418,7 @@
        }
        VATTR_NULL(&vattr);
        vattr.va_type = VSOCK;
-       vattr.va_mode = ACCESSPERMS;
+       vattr.va_mode = ACCESSPERMS &~ p->p_fd->fd_cmask;
        VOP_LEASE(nd.ni_dvp, p, p->p_ucred, LEASE_WRITE);
        error = VOP_CREATE(nd.ni_dvp, &nd.ni_vp, &nd.ni_cnd, &vattr);
        if (error)

Current thread:

Solaris 2.6 and sockets Wojciech Tryc (Oct 03)
- Re: Solaris 2.6 and sockets Theo de Raadt (Oct 04)
  - Re: Solaris 2.6 and sockets Casper Dik (Oct 06)
    - Re: Solaris 2.6 and sockets Edsel Adap (Oct 06)
    - KSR[T] Advisory #3: updatedb / crontabs KSR[T] (Oct 06)
- Re: Solaris 2.6 and sockets Thamer Al-Herbish (Oct 05)
- <Possible follow-ups>
- Re: Solaris 2.6 and sockets Eivind Eklund (Oct 12)