From owner-freebsd-questions@FreeBSD.ORG Tue Oct 21 17:37:59 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CA34516A4B3; Tue, 21 Oct 2003 17:37:59 -0700 (PDT) Received: from krell.webweaver.net (krell.webweaver.net [64.124.90.11]) by mx1.FreeBSD.org (Postfix) with ESMTP id 00D9943F93; Tue, 21 Oct 2003 17:37:59 -0700 (PDT) (envelope-from nicole@unixgirl.com) Received: from vorlon1.webweaver.net (adsl-67-112-21-28.dsl.snfc21.pacbell.net [67.112.21.28]) by krell.webweaver.net (Postfix) with ESMTP id 2B1A320F0A; Tue, 21 Oct 2003 17:37:58 -0700 (PDT) Message-ID: X-Mailer: XFMail 1.4.0 on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <3F94D7DF.632EEE65@mindspring.com> Date: Tue, 21 Oct 2003 17:37:57 -0700 (PDT) From: Nicole To: Terry Lambert cc: freebsd.org@carmoda.com cc: peter lageotakes cc: freebsd-chat@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: Problems with ordinary user permissions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Oct 2003 00:38:00 -0000 An example of how spliting BSD into BSD server and BSD desktop could be a benefit. Nicole On 21-Oct-03 My Homeland Security Spies reported that Terry Lambert said: > carmoda wrote: >> ~sigh~ >> >> seems like an awful lot of stuffing around for something that a >> user/developer should be able to access by default *in my opinion*. so >> far i have about 30% of functionality of my previous W2K system after >> several times the time required for setup. [as a workstation] >> >> FreeBSD may be 'free' and more stable, but after i add my time to a >> setup it is over twice the price of XP Pro. > > You charge too much. 8-) 8-). > > >> Something HAS to be done on the install front. I did select 'developer + >> X-windows' in the sysinstall and i think it would make more sense if the >> account security was more 'open' for the average user given they would >> be 'developing' on the platform. i mean, half of my apps didnt work due >> to permissions being short. again, i did select that i wanted a >> 'developer - x-windows' install. > > Windows defaults to "everyone on the Internet can write my disk"; > FreeBSD defaults to "only root can write my disk"; OpenBSD defaults > to "only God can write my disk, and even he needs a 1024 bit key". > > It's all a matter of trading security vs. ease of use. > > For the most part, you should install all software as root, and > then expect that the software can be configured to "do the right > thing" as part of the install. > > In general, I would say that most of your problems arise from the > UNIX security model, and the failure of the software vendors or > ports maintainers or both to anticipate you using your machine as > if it's a signle use box. > > FWIW, if you are going to use the machine as a single user box, > you probably want to create your user as uid 0:0, even if the name > is not actually "root", and then auto-login the user without a > password into something like a KDE environment. > > Then the console user owns all the hardware, and there's no issues > for single user use that need you to go to root to resolve. > > -- Terry > _______________________________________________ > freebsd-chat@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-chat > To unsubscribe, send any mail to "freebsd-chat-unsubscribe@freebsd.org" -- ******* |\ __ /| (`\ ******* * * | o_o |__ ) ) * * * * // \\ * * * Blessed Be! | Powered by FreeBSD * ----------------------(((---(((-------------------------------- http://www.unixgirl.com - http://www.deviantimages.com http://www.drumslayer.com ---------------------------------------------------------------- "We are the music makers, and we are the dreamers of the dreams." --Willy Wonka, Willy Wonka and the Chocolate Factory. "Witchcraft is in essence the worship of the powers of this world, beautiful and terrible, but all in a circle under the turning sky that is the One." -C.A. Burland, "Echoes of Magic" "Connecting with energy is something humans have to be open to and talking about and expecting, otherwise the whole human race can go back to pretending that life is about power over others and exploiting the planet. If we go back to doing this, then we won't survive." -James Redfield, "The Celestine Prophecy"