Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Kevin Chadwick (ma1l1istsyahoo.co.uk)
Date: Wed Sep 22 2010 - 05:45:10 CDT
On Wed, 22 Sep 2010 11:25:02 +0100
Owain Ainsworth <zerooagooglemail.com> wrote:
> On Tue, Sep 21, 2010 at 06:32:50PM -0700, Matthew Dempsky wrote:
> > /dev/tun* are already owned by root and mode 0600 by default, so it
> > seems redundant to check suser() in tunopen().
> Looks like vnd could have the same change for the same resons.
> If so i'll whip up the requisite two-liner.
> Computers are useless. They can only give you answers.
> -- Pablo Picasso
I can see potential reasons for changing the user on tun devices and
so saw no problem at all. I wonder if it is better however to have the
check at runtime for things like vnconfig, could having the wrong user
jeopardise an encryption password at all?.