Date: Mon, 18 Aug 2003 12:34:50 +1000 (EST) From: Bruce Evans <bde@zeta.org.au> To: "David E. O'Brien" <obrien@FreeBSD.org> Cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc Makefile src/etc/isdn Makefile Message-ID: <20030818122222.S82619@gamplex.bde.org> In-Reply-To: <200308180036.h7I0aVFl033156@repoman.freebsd.org> References: <200308180036.h7I0aVFl033156@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 17 Aug 2003, David E. O'Brien wrote:
> obrien 2003/08/17 17:36:31 PDT
>
> FreeBSD src repository
>
> Modified files:
> etc Makefile
> etc/isdn Makefile
> Log:
> Don't hardcode owner 'root' and group 'wheel'.
>
> Submitted by: Ulrich Spoerlein <q@uni.de>
This needs more thought. The owner was hardcoded to root for ppp at
least for much the same reason that the owner of the ppp binary and
all (?) other setuid binaries is forced to be root: only root should
be able to read it. The ownership shouldn't be hard-coded, but it
shouldn't be ${BINOWN}:${BINGRP} either, so that overriding the defaults
for BINOWN and BINGRP doesn't automatically open security holes.
Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030818122222.S82619>