Path: utzoo!attcan!uunet!husc6!uwvax!rutgers!gatech!purdue!decwrl!ucbvax!NUSVM.BITNET!GBOPOLY1
From: GBOPOLY1@NUSVM.BITNET (fclim)
Newsgroups: comp.sys.apollo
Subject: re: process protection
Message-ID: <8812280128.AA03401@umix.cc.umich.edu>
Date: 28 Dec 88 01:27:39 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 50
X-Unparsable-Date: Tue, 27 Dec 88 17:20:19 SST

In article <331@spinifex.eecs.unsw.oz>, timothy lambert writes:

>From article <8812051341.AA04086@umix.cc.umich.edu>, by GBOPOLY1@NUSVM.BITNET
>(fclim):
>>
>> problem now is that if a user create a server process via the dm
>> cps command, then the next person using that node will be unable to
>> sigp or kill it, (processes started thro' cps are immuned to hangups).
>> unless he knows the sys_admin or root passwords.
>>
>Not true.  You can only kill processes that belong to you.  The cps command
>creates a process that runs as user.server, so to kill one of these you have
>to say something like "xdmc cps /bin/kill -9 1232".  See the manual entry on
>"/etc/server" for more details.

does this means that any server processes set up by the sys admin in the
`node_data/startup.19l may be zap by any random user?  if the answer is yes,
i like to renew my flame that the display manager is much too powerful.
in fact, i believe that the dm should just be that, a display manager;
-- a window manager.  it shouldn't have the capability to creat new process,
or to shut down a node.
furthermore, opening the dm ex command to all users isn't a good idea
as well.  exiting from dm only put us into the mnemonic debugger.
i have done that and found out from a help command, i could invol my
hard disk or other commands which only a sys admin may do.  all these
*without* logging in; thus bypassing any accounting programs.

>Unfortunately this also means that anyone can kill processes belonging to
>the person logged into the display manager if they can crp (or telnet or
>rlogin) onto that node.  (just make that a "cpo" above instead of a "cps")

does this mean that crp is a set-uid-on program?  whoever logs on and crp
to a different node has his effective uid to user.server??  and user.server
is as powerful as root such that any process may be zapped???
gee, one god is enough; why must apollo creat more dieties like user.%.

***** so, this is x'mas
***** and what have we done?
***** haven't figure out 9.7
***** and now, they come out with sr10.

*flame* off
have a happy new year.  :-)


fclim          --- gbopoly1 % nusvm.bitnet @ cunyvm.cuny.edu
computer centre
singapore polytechnic
dover road
singapore 0513.