From owner-freebsd-questions Sat Jul 1 22:52:55 2000 Delivered-To: freebsd-questions@freebsd.org Received: from operamail.com (OperaMail.com [199.29.68.79]) by hub.freebsd.org (Postfix) with ESMTP id 4D8AB37BCFA for ; Sat, 1 Jul 2000 22:52:50 -0700 (PDT) (envelope-from bbarnes@operamail.com) X-WM-Posted-At: operamail.com; Sun, 2 Jul 00 01:55:41 -0400 X-WebMail-UserID: bbarnes Date: Sun, 2 Jul 2000 01:55:41 -0400 From: Bill Barnes To: cjclark@alum.mit.edu Cc: freebsd questions Subject: RE: Ports via FTP Message-ID: <398F046C@operamail.com> Mime-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7bit X-Mailer: InterChange (Hydra) SMTP v3.61.06 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I created the wrong impression. It isn't FreeBSD that I'm worried about, it's the crackers. This afternoon and evening the download was stalled a lot and there is some offline peparation time and I've read there is significant risk in connecting to the internet as root. It doesn't matter too much right now because I just installed and haven't anything to lose. I was logged in as root for other maintenance and, frankly, forgot about that until I started the ftp. If i login as non-root, establish the internet connection, then su for the ftp process, does that eliminate the risk of 'root online'; or maybe I am worried about a non-problem. BTW, I posted another message describing my woes in using ftp to update tkdesk and maybe a straight download is the easiest way to go. Appreciate the feedback, Bill Barnes >== Original Message From cjclark@alum.mit.edu ===== >On Sat, Jul 01, 2000 at 09:29:07PM -0400, Bill Barnes wrote: >> Hello list: >> >> I'm doing my first one of the above and it bothers me that I am online as >> root. >> There must be a way around this, but how can non-root write to /usr. > >I'm not sure what you are saying here, "online as root." Do you mean >you are uneasy logging on to your PC as root while connected to a >network? Do you mean you feel uneasy using anonymous ftp while root? > >If you really don't trust FreeBSD's fetch(1) and ftp(1), you can grab >the source tarballs as a mortal user then as root move them to >/usr/ports/distfiles. > >Either way, the ports system does do an md5(1) check on the downloaded >tarballs before building and installing anything. >-- >Crist J. Clark cjclark@alum.mit.edu > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message