From owner-freebsd-security@FreeBSD.ORG Sun Jan 14 16:20:03 2007 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0BC0116A407 for ; Sun, 14 Jan 2007 16:20:02 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id B15D113C44B for ; Sun, 14 Jan 2007 16:20:00 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A5DEEC.dip.t-dialin.net [84.165.222.236]) by redbull.bpaserver.net (Postfix) with ESMTP id 6E6DF2E0A7; Sun, 14 Jan 2007 17:08:26 +0100 (CET) Received: from Magellan.Leidinger.net (Magellan.Leidinger.net [192.168.1.1]) by outgoing.leidinger.net (Postfix) with ESMTP id 063E45B497E; Sun, 14 Jan 2007 17:01:25 +0100 (CET) Date: Sun, 14 Jan 2007 17:01:24 +0100 From: Alexander Leidinger To: Bill Moran Message-ID: <20070114170124.432d882f@Magellan.Leidinger.net> In-Reply-To: <20070114101515.adaecd4e.wmoran@collaborativefusion.com> References: <64b272cb0701140319y4e86d969ld4532cfa2408cc8f@mail.gmail.com> <20070114101515.adaecd4e.wmoran@collaborativefusion.com> X-Mailer: Claws Mail 2.7.0 (GTK+ 2.10.7; i686-portbld-freebsd7.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-14.864, required 6, autolearn=not spam, BAYES_00 -15.00, DK_POLICY_SIGNSOME 0.00, FORGED_RCVD_HELO 0.14) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No X-Mailman-Approved-At: Mon, 15 Jan 2007 01:26:53 +0000 Cc: Kobajashi Zaghi , freebsd-security@freebsd.org Subject: Re: MOAB advisories X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jan 2007 16:20:03 -0000 Quoting Bill Moran (Sun, 14 Jan 2007 10:15:15 -0500): > "Kobajashi Zaghi" wrote: > > > > I would like to know, that these following "vulnerabilities" does > > affect FreeBSD's reliability? If the answer is "yes", what version of > > FreeBSD affected, when will be fixed, etc. > > > > http://projects.info-pull.com/moab/MOAB-12-01-2007.html > > http://projects.info-pull.com/moab/MOAB-10-01-2007.html > > These folks are establishing themselves as careless, alarmist, and > uneducated when it comes to kernel bugs. > > In FreeBSD, the above mentioned flaws can, indeed, cause a kernel panic. > However, this is intended behaviour when a corrupt filesystem is > encountered. It protects the system from serious damage that could > result from trying to work with the corrupt filesystem. > > The difference, that the info-pull folks seem to be too stupid to > understand, is that FreeBSD does not allow mounting of filesystems > by anyone other than root. Except root did set the sysctl to allow this, or started a HAL daemon which mounts stuff for the desktop user, or uses amd to mount stuff. Bye, Alexander. -- Lt. Dan: "Have you found Jesus yet Gump?" Forrest Gump: "I didn't know I was supposed to be looking for him - Sir!" http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137