Date: Fri, 15 Nov 2002 04:29:50 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Soeren Schmidt <sos@spider.deepcore.dk> Cc: Sheldon Hearn <sheldonh@starjuice.net>, freebsd-current@FreeBSD.ORG Subject: Re: /dev/acd*t* no longer available in -current? Message-ID: <20021115122950.GA16194@rot13.obsecurity.org> In-Reply-To: <200211150848.gAF8muEU060773@spider.deepcore.dk> References: <20021115084430.GI76728@starjuice.net> <200211150848.gAF8muEU060773@spider.deepcore.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
--wRRV7LY7NUeQGEoC Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Nov 15, 2002 at 09:48:56AM +0100, Soeren Schmidt wrote: > It seems Sheldon Hearn wrote: > > On (2002/11/14 19:27), Soeren Schmidt wrote: > >=20 > > > > - insecure permissions. Among other holes, these allowed the world= to > > > > erase cd-rw's. > > >=20 > > > Use rc.devfs for that as it was intended. > >=20 > > Don't you think it makes more sense for the kernel to start off with > > more restrictive permissions, and have the administrator determine > > whether more restrictive permissions are appropriate? >=20 > Actually no I dont. > The security aware admin will know (or should that be "should know" :) ) > what to do to make a system secure. That's a particularly uncompelling argument. Kris --wRRV7LY7NUeQGEoC Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE91Oi9Wry0BWjoQKURAoqkAKDEZZvxpE/YIGr6KIQrndtzYXX0egCgu3M1 RMbPMuqX1es4JN+AQ2Fz2Kw= =VI5j -----END PGP SIGNATURE----- --wRRV7LY7NUeQGEoC-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021115122950.GA16194>