Hi DHCP developers,
Andrew Pollock [2008-01-14 20:48 -0800]:
> This bug was received some time ago, and I forwarded it on to
> dhcp-hackers, because I wasn't aware of dhcp-bugs at the time.
Just confirming that I still think that the server derooting patch
makes sense; it is unintrusive and robus
On Fri, May 13, 2005 at 09:13:17AM +0200, Martin Pitt wrote:
> Hi!
>
> Andrew Pollock [2005-05-13 9:41 +1000]:
> > Very cool. I will attempt to feed this to upstream, and will look at
> > applying it to Debian. I'm planning on having a major fiddle with dhcp3
> > after Sarge releases.
>
> Nice t
Hi!
Andrew Pollock [2005-05-13 9:41 +1000]:
> Very cool. I will attempt to feed this to upstream, and will look at
> applying it to Debian. I'm planning on having a major fiddle with dhcp3
> after Sarge releases.
Nice to hear! For upstream adoption it is probably required to invest
a bit more wo
On Thu, May 12, 2005 at 06:03:06PM +0200, Martin Pitt wrote:
> Package: dhcp3-server
> Severity: wishlist
> Tags: security patch
>
> Hi!
>
> dhcpd currently runs as root, which is much more than necessary. To
> confine the impact of security holes, I minimized the privileges of
> the server to a
Package: dhcp3-server
Severity: wishlist
Tags: security patch
Hi!
dhcpd currently runs as root, which is much more than necessary. To
confine the impact of security holes, I minimized the privileges of
the server to a minimum: it runs as a normal user "dhcpd" now and only
uses CAP_NET_RAW and CAP
5 matches
Mail list logo
