صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
dustdfg
/
dragora
برگرفته از dragora/dragora
دنبال کردن 1
ستاره دار 0
انشعاب 0
پرونده‌ها
درخت: d9d64d531a
شاخه‌ها تگ‌ها
dragora
/
patches
/
tcp_wrappers
/
initgroups

initgroups 2.0 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. diff -up tcp_wrappers_7.6/options.c.initgroups tcp_wrappers_7.6/options.c
    2. 

  2. --- tcp_wrappers_7.6/options.c.initgroups	2011-08-11 23:10:43.610418714 +0200
    3. 

  3. +++ tcp_wrappers_7.6/options.c	2011-08-12 05:51:17.748481294 +0200
    4. 

  4. @@ -256,8 +256,12 @@ struct request_info *request;
    5. 

  5.  	tcpd_jump("unknown group: \"%s\"", value);
    6. 

  6.      endgrent();
    7. 

  7.  
    8. 

  8. -    if (dry_run == 0 && setgid(grp->gr_gid))
    9. 

  9. -	tcpd_jump("setgid(%s): %m", value);
    10. 

  10. +    if (dry_run != 0) {
    11. 

  11. +        if (setgid(grp->gr_gid))
    12. 

  12. +	   tcpd_jump("setgid(%s): %m", value);
    13. 

  13. +        if (setgroups(0, NULL))
    14. 

  14. +	   tcpd_jump("setgroups(%s): %m", value);
    15. 

  15. +    }
    16. 

  16.  }
    17. 

  17.  
    18. 

  18.  /* user_option - switch user id */
    19. 

  19. @@ -271,15 +275,26 @@ struct request_info *request;
    20. 

  20.      struct passwd *pwd;
    21. 

  21.      struct passwd *getpwnam();
    22. 

  22.      char   *group;
    23. 

  23. +    int    defaultgroup = 0;
    24. 

  24.  
    25. 

  25.      if ((group = split_at(value, '.')) != 0)
    26. 

  26.  	group_option(group, request);
    27. 

  27. +    else
    28. 

  28. +	defaultgroup = 1;
    29. 

  29.      if ((pwd = getpwnam(value)) == 0)
    30. 

  30.  	tcpd_jump("unknown user: \"%s\"", value);
    31. 

  31.      endpwent();
    32. 

  32.  
    33. 

  33. -    if (dry_run == 0 && setuid(pwd->pw_uid))
    34. 

  34. -	tcpd_jump("setuid(%s): %m", value);
    35. 

  35. +    if (dry_run != 0) {
    36. 

  36. +        if (setuid(pwd->pw_uid))
    37. 

  37. +	    tcpd_jump("setuid(%s): %m", value);
    38. 

  38. +	if (defaultgroup) {
    39. 

  39. +            if (setgid(pwd->pw_gid))
    40. 

  40. +	       tcpd_jump("setgid(%s): %m", value);
    41. 

  41. +            if (initgroups(value, pwd->pw_gid))
    42. 

  42. +	       tcpd_jump("initgroups(%s): %m", value);
    43. 

  43. +	}
    44. 

  44. +    }
    45. 

  45.  }
    46. 

  46.  
    47. 

  47.  /* umask_option - set file creation mask */
    48. 

  48. diff -up tcp_wrappers_7.6/safe_finger.c.initgroups tcp_wrappers_7.6/safe_finger.c
    49. 

  49. --- tcp_wrappers_7.6/safe_finger.c.initgroups	2011-08-12 05:54:06.068606291 +0200
    50. 

  50. +++ tcp_wrappers_7.6/safe_finger.c	2011-08-12 05:55:34.835483785 +0200
    51. 

  51. @@ -66,9 +66,11 @@ char  **argv;
    52. 

  52.      if (getuid() == 0 || geteuid() == 0) {
    53. 

  53.  	if ((pwd = getpwnam(UNPRIV_NAME)) && pwd->pw_uid > 0) {
    54. 

  54.  	    setgid(pwd->pw_gid);
    55. 

  55. +	    initgroups(UNPRIV_NAME, pwd->pw_gid);
    56. 

  56.  	    setuid(pwd->pw_uid);
    57. 

  57.  	} else {
    58. 

  58.  	    setgid(UNPRIV_UGID);
    59. 

  59. +	    setgroups(0, NULL);
    60. 

  60.  	    setuid(UNPRIV_UGID);
    61. 

  61.  	}
    62. 

  62.      }
    63. 

  63.