We’re trying to restrict TFTPD to the files in the /stats tree by
placing this line in /etc/inetd.conf:
tftp dgram udp wait root /usr/sbin/tftpd in.tftpd /stats
We find, however, that we can read any file on the disk via tftp! Any
ideas what we’re doing wrong? We’re running QNX 6.2.0.
Murf
tftp dgram udp wait root /usr/sbin/tftpd in.tftpd /stats
Run the service as nobody rather then root. And give nobody access to
/stats. Better yet, create a new user for tftp and use that instead of
nobody.
chris
–
Chris McKillop <cdm@qnx.com> “The faster I go, the behinder I get.”
Software Engineer, QSSL – Lewis Carroll –
http://qnx.wox.org/
I can give that a try, but what’s happening here? According to the docs, and
the source for various versions of BSD TFTPD, things ought to work as is.
Has the QNX port of TFTPD removed the call to validate_access()? Since the
test for an embedded “/…/” still seems to work, that doesn’t seem to be the
case. Am I misreading the docs? What’s going on???
Murf
Chris McKillop wrote:
tftp dgram udp wait root /usr/sbin/tftpd in.tftpd /stats
Run the service as nobody rather then root. And give nobody access to
/stats. Better yet, create a new user for tftp and use that instead of
nobody.chris
–
Chris McKillop <> cdm@qnx.com> > “The faster I go, the behinder I get.”
Software Engineer, QSSL – Lewis Carroll –
http://qnx.wox.org/
This was broken in 6.2.0. It should be fixed in 6.2.1 or 6.2.1A. The
validate_access() was still called but
it looks like it did not parse the command line properly to extract the
specified directories.
Dave
“John A. Murphy” <murf@perftech.com> wrote in message
news:3EC0CFD7.9286BCAE@perftech.com…
I can give that a try, but what’s happening here? According to the docs,
and
the source for various versions of BSD TFTPD, things ought to work as is.
Has the QNX port of TFTPD removed the call to validate_access()? Since
the
test for an embedded “/…/” still seems to work, that doesn’t seem to be
the
case. Am I misreading the docs? What’s going on???Murf
Chris McKillop wrote:
tftp dgram udp wait root /usr/sbin/tftpd in.tftpd /stats
Run the service as nobody rather then root. And give nobody access to
/stats. Better yet, create a new user for tftp and use that instead of
nobody.chris
–
Chris McKillop <> cdm@qnx.com> > “The faster I go, the behinder I
get.”
Software Engineer, QSSL – Lewis Carroll –
http://qnx.wox.org/
Aha, that was sure what it looked like. Meanwhile I wrote my own. But thanks
for the info!
Murf
Dave Brown wrote:
This was broken in 6.2.0. It should be fixed in 6.2.1 or 6.2.1A. The
validate_access() was still called but
it looks like it did not parse the command line properly to extract the
specified directories.Dave
“John A. Murphy” <> murf@perftech.com> > wrote in message
news:> 3EC0CFD7.9286BCAE@perftech.com> …
I can give that a try, but what’s happening here? According to the docs,
and
the source for various versions of BSD TFTPD, things ought to work as is.
Has the QNX port of TFTPD removed the call to validate_access()? Since
the
test for an embedded “/…/” still seems to work, that doesn’t seem to be
the
case. Am I misreading the docs? What’s going on???Murf
Chris McKillop wrote:
tftp dgram udp wait root /usr/sbin/tftpd in.tftpd /stats
Run the service as nobody rather then root. And give nobody access to
/stats. Better yet, create a new user for tftp and use that instead of
nobody.chris
–
Chris McKillop <> cdm@qnx.com> > “The faster I go, the behinder I
get.”
Software Engineer, QSSL – Lewis Carroll –
http://qnx.wox.org/