[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [leafnode-list] file permissions / umask (was: adding IHAVE support to leafnode)

Reiner Steib schrieb am 2004-03-24:

> I'm surprised that you mentions this, because (at least with
> leafnode-2.0.0.alpha20040122a) directory and file permissions on the
> spool do not allow this (unless the news reader program runs suid
> 'news'):

Cory was referring to 1.9.X which supports traditional spool access.

I locked traditional readers out of /var/spool/news access early in the
2.0 alpha phase so as not to have complaints later, and as a test
balloon that flew pretty high before it burst asunder, i. e. I haven't
had complaints yet. Seems that /var/spool/news access is effectively
dead in newsreaders - maybe a reminiscence of old time-sharing Unices
with VT52 terminals or something. The graphical stuff all talks NNTP,
and the up-to-date text-mode newsreaders such as tin, slrn, mutt with
NNTP patch also do.

I had considered storing articles in "wire format" (with CR LF line
separator) so nntpd.c could blast them out with mmap(2)/write(2) or
sendfile(2) -- or to support spool compression, and locking
direct-access newsreaders out was an easy way to reclaim all liberties
WRTT spool format.

Matthias Andree

Encrypt your mail: my GnuPG key ID is 0x052E7D95
leafnode-list mailing list