From owner-cvs-all Wed Oct 10 8:53:29 2001 Delivered-To: cvs-all@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id 942DE37B405; Wed, 10 Oct 2001 08:53:20 -0700 (PDT) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id RAA16660; Wed, 10 Oct 2001 17:53:17 +0200 (CEST) (envelope-from des@ofug.org) X-URL: http://www.ofug.org/~des/ X-Disclaimer: The views expressed in this message do not necessarily coincide with those of any organisation or company with which I am or have been affiliated. To: Garrett Wollman Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/kern kern_proc.c kern_prot.c uipc_socket.c uipc_usrreq.c src/sys/netinet raw_ip.c tcp_subr.c udp_usrreq.c References: <200110092140.f99LeVA74145@freefall.freebsd.org> <200110101522.f9AFM0S63283@khavrinen.lcs.mit.edu> From: Dag-Erling Smorgrav Date: 10 Oct 2001 17:53:16 +0200 In-Reply-To: <200110101522.f9AFM0S63283@khavrinen.lcs.mit.edu> Message-ID: Lines: 22 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Garrett Wollman writes: > < said: > > > "Unprivileged processes may see subjects/objects with different real uid" > > Would people mind a lot if this variable defaulted to 0? > Hell yes. That's not a constructive response. To me, the ability of unprivileged users to obtain information about other users' processes and sockets is a) unnecessary b) a violation of privacy c) a security risk Unless you can provide an argument showing that this is necessary to the correct operation of a FreeBSD system, I'll simply ignore your contribution to this discussion. DES -- Dag-Erling Smorgrav - des@ofug.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message