[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security holes

To: Tom Kwong <tkwong@xxxxxxxxx>
Subject: Re: security holes
From: Fredrik Dahlberg <Fredrik.Dahlberg@xxxxxx>
Date: Wed, 19 Jan 2000 15:38:44 +0100 (MET)
Cc: ircd-users@xxxxxxx
Delivered-to: ircd-users-out@irc.org
Delivered-to: ircd-users@irc.org
In-reply-to: <38855F0C.BE0B5994@2link.net>

On Tue, 18 Jan 2000, Tom Kwong wrote:

> I am trying to get ircd running on my linux box.  Some people told me
> that ircd has many security holes.  Is that true?  And, if so, where can
> I find the details about that?  Thanks!

There is no reason for running ircd as root. If you use #define CHROOTDIR,
you should use IRC_UID as well. Even if there was a security hole in ircd,
they couldn't use it for anything if you did this.

/D

References:
- security holes
  - From: Tom Kwong

Prev by Date: security holes
Next by Date: RE: security holes
Previous by thread: security holes
Next by thread: RE: security holes
Index(es):
- Date
- Thread