On Tue, 28 Nov 2000, Kurt Seifried wrote:
Does SuSE have any plans to implement the following patch in their "standard" dhcp server dhcpd? It allows you to easily run the dhcpd server as a non root user and chrooted, just like BIND. If not I'd be curious to know why (if you already are I'll just shutup and wait for my copy of SuSE before I post anymore things like this =).
http://users.phri.nyu.edu/~edelkind/custom/public/patches/dhcp-2.0+paranoia. patch
it looks more secure then the last time you asked about it, but it still missed to call initgroups(). the author should add initgroups()! Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47