From owner-freebsd-security Fri Sep 22 14:39:24 2000 Delivered-To: freebsd-security@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id BBC6537B422 for ; Fri, 22 Sep 2000 14:39:20 -0700 (PDT) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.9.3/8.9.3) with ESMTP id PAA11874; Fri, 22 Sep 2000 15:39:19 -0600 (MDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id PAA71726; Fri, 22 Sep 2000 15:39:19 -0600 (MDT) Message-Id: <200009222139.PAA71726@harmony.village.org> To: Neil Blakey-Milner Subject: Re: sysinstall DOESN'T ASK, dangerous defaults! Cc: Lyndon Nerenberg , freebsd-security@FreeBSD.ORG In-reply-to: Your message of "Fri, 22 Sep 2000 23:33:18 +0200." <20000922233318.A34189@mithrandr.moria.org> References: <20000922233318.A34189@mithrandr.moria.org> <200009222026.OAA71131@harmony.village.org> <200009222122.e8MLMG117534@orthanc.ab.ca> Date: Fri, 22 Sep 2000 15:39:18 -0600 From: Warner Losh Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message <20000922233318.A34189@mithrandr.moria.org> Neil Blakey-Milner writes: : Maybe you can give me some clue - why is rsh and login suid-root? Can : they function without it? No. Well, the kerberos support works, but they need to be suid root to bind to low ports. That's part of what makes the normal protcol so lame. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message