Date: Mon, 10 Feb 1997 08:35:44 +1100 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: Andreas Klemm <andreas@klemm.gtn.com> Cc: David Nugent <davidn@labs.usn.blaze.net.au>, freebsd-hackers@freebsd.org, current@freebsd.org Subject: Re: should permissions of /usr/bin/login be changed to 0100 ??? Message-ID: <Pine.BSF.3.91.970210083351.427T-100000@panda.hilink.com.au> In-Reply-To: <19970209171649.EU26961@klemm.gtn.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 9 Feb 1997, Andreas Klemm wrote: > > > Our /usr/bin/login program has the following permissions: > > > -r-sr-xr-x 1 root bin 24576 6 Feb 01:28 /usr/bin/login > > > > > > Would it be useful to change permissions to 0100 ? > > > > Just removing the setuid bit makes it harmless, but 0100 will > > prevent anyone but root trying, anyway. I'm all for it. > > So would it be ok, to install "login" with 0100 permissions ? If > nobody is against it, I'd do the change in -current. > > Wouldn't that be additionally something for 2.2 and 2.1.7 ? > After the whole security debate ?! I still don't see why you can't do as I suggested, and make it optional, dependent on the perm settings, as per my previous message on this topic. Danny
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.970210083351.427T-100000>