[Bug 185023] [tun] Closing tun<n> interface deconfigures IP address
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Oct 20 08:28:18 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=185023
--- Comment #6 from jphartmann at gmail.com ---
Thank you.
The current behaviour actually has a security issue as a non-privileged user
can cause reconfiguration, i.e., remove the ip address from the interface.
E.g., (from a linux system where this bug arrived some five years ago):
openvpn --mktun --dev tun4 --user john --group john
ifconfig tun4 up 10.0.0.32/30 pointopoint 10.0.0.33
User john now has escalated privileges with respect to the configuration of
tun4, insofar as he can clear the IP address assigned simply by opening and
closing the device.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list