From owner-freebsd-security Tue Jun 1 20:19:40 1999 Delivered-To: freebsd-security@freebsd.org Received: from mail.theinternet.com.au (zeus.theinternet.com.au [203.34.176.2]) by hub.freebsd.org (Postfix) with ESMTP id 4A38315126 for ; Tue, 1 Jun 1999 20:19:32 -0700 (PDT) (envelope-from akm@mail.theinternet.com.au) Received: (from akm@localhost) by mail.theinternet.com.au (8.9.3/8.9.3) id NAA22830; Wed, 2 Jun 1999 13:21:48 +1000 (EST) (envelope-from akm) From: Andrew Kenneth Milton Message-Id: <199906020321.NAA22830@mail.theinternet.com.au> Subject: Re: Shell Account system In-Reply-To: <199906020313.UAA86277@apollo.backplane.com> from Matthew Dillon at "Jun 1, 1999 8:13:42 pm" To: dillon@apollo.backplane.com (Matthew Dillon) Date: Wed, 2 Jun 1999 13:21:48 +1000 (EST) Cc: akm@mail.theinternet.com.au, matt@Mlink.NET, bc@thehub.com.au, cain@tasam.com, freebsd-security@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org +----[ Matthew Dillon ]--------------------------------------------- | : | :Unless you have multiple remote admins, who you don't want to be | :able to stuff with the conf files, but, you do want them to be able | :to restart the daemon. | : | | You can always argue that your favoriate methods of admin requires | binaries to be suid-root, but all it means is that you need to change | your methods. I'd agree that you don't want it suid root, I don't agree that you don't want it suid some other non-privelged user. -- Totally Holistic Enterprises Internet| P:+61 7 3870 0066 | Andrew The Internet (Aust) Pty Ltd | F:+61 7 3870 4477 | Milton ACN: 082 081 472 | M:+61 416 022 411 |72 Col .Sig PO Box 837 Indooroopilly QLD 4068 |akm@theinternet.com.au|Specialist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message