Date: Mon, 15 Mar 1999 09:41:29 -0300 (GMT) From: Fernando Schapachnik <fpscha@ns1.sminter.com.ar> To: dillon@apollo.backplane.com (Matthew Dillon) Cc: dscheidt@enteract.com, unicorn@blackhats.org, freebsd-security@FreeBSD.ORG Subject: Re: ACLs Message-ID: <199903151241.JAA01091@ns1.sminter.com.ar> In-Reply-To: <199903140826.AAA89058@apollo.backplane.com> from Matthew Dillon at "Mar 14, 99 00:26:45 am"
next in thread | previous in thread | raw e-mail | index | archive | help
En un mensaje anterior, Matthew Dillon escribió: [...] > If you have your machine partitioned correctly, you do not generally > have to worry about hardlinks to system binaries ( suid or otherwise ) > as users do not have access to partitions containing them. This leads me to a question: Why not set the default (auto) file system layout to something like: / /usr /var /home /tmp This not only restrict linking problems, but also allows to specify things like noexec and nosuid on /home and /tmp at least. Regards. Fernando P. Schapachnik Administracion de la red VIA Net Works Argentina SA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903151241.JAA01091>