From owner-freebsd-security Fri Aug 21 12:48:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA21849 for freebsd-security-outgoing; Fri, 21 Aug 1998 12:48:54 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA21840 for ; Fri, 21 Aug 1998 12:48:52 -0700 (PDT) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.1/8.9.1) id PAA15656; Fri, 21 Aug 1998 15:47:48 -0400 (EDT) (envelope-from wollman) Date: Fri, 21 Aug 1998 15:47:48 -0400 (EDT) From: Garrett Wollman Message-Id: <199808211947.PAA15656@khavrinen.lcs.mit.edu> To: Jon Hamilton Cc: Garrett Wollman , dima@best.net, jkh@time.cdrom.com, security@FreeBSD.ORG Subject: Re: Scaring the bezeesus out of your system admin as a normal user: In-Reply-To: <199808211915.MAA18409@hub.freebsd.org> References: <199808211638.MAA15257@khavrinen.lcs.mit.edu> <199808211915.MAA18409@hub.freebsd.org> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > } You missed the point. Credentials passed over PF_LOCAL sockets are by > } design unforgeable. > That doesn't address remote logging, however. Surely not. Remote logging, in the syslog mode, is inescapably insecure. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message