From owner-freebsd-stable Mon Oct 9 10:55:36 2000 Delivered-To: freebsd-stable@freebsd.org Received: from mta02-svc.ntlworld.com (mta02-svc.ntlworld.com [62.253.162.42]) by hub.freebsd.org (Postfix) with ESMTP id BB7AF37B502 for ; Mon, 9 Oct 2000 10:55:32 -0700 (PDT) Received: from parish ([62.255.97.114]) by mta02-svc.ntlworld.com (InterMail vM.4.01.02.27 201-229-119-110) with ESMTP id <20001009185409.WVBM23965.mta02-svc.ntlworld.com@parish>; Mon, 9 Oct 2000 18:54:09 +0000 Received: (from mark@localhost) by parish (8.11.0/8.11.0) id e99HscE04014; Mon, 9 Oct 2000 18:54:38 +0100 (BST) (envelope-from mark) Date: Mon, 9 Oct 2000 18:54:31 +0100 From: Mark Ovens To: Chris Faulhaber Cc: Vivek Khera , freebsd-stable@freebsd.org Subject: Re: make buildworld failing Message-ID: <20001009185431.C252@parish> References: <20001008154111.D96958@freebie.demon.nl> <14817.54397.228468.872440@onceler.kciLink.com> <20001009103539.B28702@peitho.fxp.org> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: <20001009103539.B28702@peitho.fxp.org>; from jedgar@fxp.org on Mon, Oct 09, 2000 at 10:35:39AM -0400 Organization: Total lack of Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Oct 09, 2000 at 10:35:39AM -0400, Chris Faulhaber wrote: > On Mon, Oct 09, 2000 at 10:21:49AM -0400, Vivek Khera wrote: > > >>>>> "a" == andrew writes: > > > > a> On Sun, 8 Oct 2000, Wilko Bulte wrote: > > > > >> People already having root privs are not stopped by it. Or is it only aimed > > >> at the higher securelevels? > > > > a> I assume its for secure levels 1 and above and if you were a security > > a> conscious site I imagine it would be a very useful feature. > > > > My question is why does /usr/obj need the schg flag set on anything in > > the first place? It basically means that on a secure system you have > > to reboot to single user just to delete the build tree. > > > > It doesn't (as of 4.x). Previous branches did set the schg flag, however > 4.x and 5.x no longer do this. Thank you for the explanation. Can you just confirm that this has *always* been the case for 4.x? (so that I can update the handbook). > > -- > Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org > -------------------------------------------------------- > FreeBSD: The Power To Serve - http://www.FreeBSD.org > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message -- 4.4 - The number of the Beastie ________________________________________________________________ 51.44°N FreeBSD - The Power To Serve http://www.freebsd.org 2.057°W My Webpage http://ukug.uk.freebsd.org/~mark mailto:marko@freebsd.org http://www.radan.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message