Date: Mon, 9 Oct 2000 10:35:39 -0400 From: Chris Faulhaber <jedgar@fxp.org> To: Vivek Khera <khera@kciLink.com> Cc: freebsd-stable@freebsd.org Subject: Re: make buildworld failing Message-ID: <20001009103539.B28702@peitho.fxp.org> In-Reply-To: <14817.54397.228468.872440@onceler.kciLink.com>; from khera@kciLink.com on Mon, Oct 09, 2000 at 10:21:49AM -0400 References: <20001008154111.D96958@freebie.demon.nl> <Pine.BSF.4.21.0010090022420.95800-100000@starbug.ugh.net.au> <14817.54397.228468.872440@onceler.kciLink.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Oct 09, 2000 at 10:21:49AM -0400, Vivek Khera wrote: > >>>>> "a" == andrew <andrew@ugh.net.au> writes: > > a> On Sun, 8 Oct 2000, Wilko Bulte wrote: > > >> People already having root privs are not stopped by it. Or is it only aimed > >> at the higher securelevels? > > a> I assume its for secure levels 1 and above and if you were a security > a> conscious site I imagine it would be a very useful feature. > > My question is why does /usr/obj need the schg flag set on anything in > the first place? It basically means that on a secure system you have > to reboot to single user just to delete the build tree. > It doesn't (as of 4.x). Previous branches did set the schg flag, however 4.x and 5.x no longer do this. -- Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org -------------------------------------------------------- FreeBSD: The Power To Serve - http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001009103539.B28702>