[Nut-upsdev] Re: [nut-commits] svn commit r731
Henning Brauer
hb-nut at bsws.de
Thu Jan 25 12:19:16 CET 2007
* Arjen de Korte <nut+devel at de-korte.org> [2007-01-25 11:41]:
> 3) copy /etc/passwd inside the jail just before calling chroot
it should be pretty obvious that this is a clear no-no. besides the
security implications, getpwnam(3) and friends will not (necessarily)
work with just passwd present - BSD systems use pwd.db and spwd.db,
compiled from master.passwd, and only generate a passwd file for
compatibility reasons. the latter can be disabled and doesn't really
cause harm, pretty much nothing these days is dumb enough tryting to
use the passwd file directly but using getpw* instead.
--
Henning Brauer, hb at bsws.de, henning at openbsd.org
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam
More information about the Nut-upsdev
mailing list