From owner-freebsd-security  Mon Nov 16 10:48:21 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id KAA14825
          for freebsd-security-outgoing; Mon, 16 Nov 1998 10:48:21 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from david.siemens.de (david.siemens.de [192.35.17.14])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA14574
          for <freebsd-security@FreeBSD.ORG>; Mon, 16 Nov 1998 10:48:00 -0800 (PST)
          (envelope-from andre.albsmeier@mchp.siemens.de)
X-Envelope-Sender-Is: andre.albsmeier@mchp.siemens.de (at relayer david.siemens.de)
Received: from mail.siemens.de (salomon.siemens.de [139.23.33.13])
	by david.siemens.de (8.9.1a/8.9.1) with ESMTP id NAA25517
	for <freebsd-security@FreeBSD.ORG>; Mon, 16 Nov 1998 13:00:22 +0100 (MET)
Received: from curry.mchp.siemens.de (daemon@curry.mchp.siemens.de [146.180.31.23])
	by mail.siemens.de (8.9.1a/8.9.1) with ESMTP id NAA08244
	for <freebsd-security@FreeBSD.ORG>; Mon, 16 Nov 1998 13:00:20 +0100 (MET)
Received: (from daemon@localhost)
	by curry.mchp.siemens.de (8.8.8/8.8.8) id NAA18545
	for <freebsd-security@FreeBSD.ORG>; Mon, 16 Nov 1998 13:00:20 +0100 (CET)
Message-ID: <19981116125909.A28486@internal>
Date: Mon, 16 Nov 1998 12:59:09 +0100
From: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
To: Matthew Dillon <dillon@apollo.backplane.com>,
        Warner Losh <imp@village.org>
Cc: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>,
        freebsd-security@FreeBSD.ORG
Subject: Re: Would this make FreeBSD more secure?
References: <19981116072937.E969@internal> <19981115192224.A29686@internal> <19981115161548.A23869@internal> <199811151758.JAA15108@apollo.backplane.com> <19981115192224.A29686@internal> <199811152210.PAA01604@harmony.village.org> <199811160658.XAA01912 <
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.93.2i
In-Reply-To: <199811161055.CAA18393@apollo.backplane.com>; from Matthew Dillon on Mon, Nov 16, 1998 at 02:55:14AM -0800
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Mon, Nov 16, 1998 at 02:55:14AM -0800, Matthew Dillon wrote:
> 
> :
> :This would plug some potential holes in a small number of
> :applications.  I'm not sure that it is worth it on the effort/return
> :front.  I can think of only a few programs that might benefit from
> :this, and a similar benefit could likely be had with a PAM module that
> :talked to a password server which did all the right things.  However,
> :that too add complexity, which makes it harder to secure things....
> :
> :Warner
> 
>     There are only a limited number of programs that run as root or are
>     suid root.  Being able to plug even half a dozen of them by removing
>     their root privilages would be a major win. 

That is exactly my opinion. I think a program should run with the
minimum privileges it really needs to and not more.

	-Andre

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message