Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 17 Dec 1998 09:37:19 +0000
From:      Mark Ovens <marko@uk.radan.com>
To:        addbook:add?vcard=begin%3Avcaflygt@sr.se, Michael Slater <mikey@iexpress.net.au>
Cc:        FreeBSD Questions <questions@FreeBSD.ORG>
Subject:   Re: Basic Security Question
Message-ID:  <3678D0CF.7FA8B106@uk.radan.com>
References:  <Pine.BSF.3.96.981217110551.22156A-100000@atlas.iexpress.net.au> <19981217101147.C4062@sr.se>
next in thread | previous in thread | raw e-mail | index | archive | help 
Gunnar Flygt wrote:
> 
> On Thu, Dec 17, 1998 at 11:11:14AM +0800, Michael Slater wrote:
> > Hello,
> >   This might seem like a pretty basic question to most on this list but
> > here goes.. My boss, a non UNIX person, has directed me to make the /etc
> > directory readable only by root.. He ignores my argument that this is
> > not a good thing and claims that FreeBSD must be very insecure if this is
> > the case. Can someone explain in simple terms what the permissions should
> > be for the /etc directory, and why it is not a good idea to make it
> > readable only by root. His assumption is that a "good" comerical grade
> > system such as Solaris, or BSDI would never allow this..
> 
> The permissions on my SUN Enterprise 3000 running Solaris 2.6 fro the
> etc directory is:
> 
> drwxr-xr-x  31 root     sys         3584 Dec 13 03:10 etc
> 

and on all the Sparcs running SunOS4.1.3_U1 here are:

gppsun4:/{8}% ls -ldug etc
drwxrwsrwx 10 bin      staff        2048 Dec 17 09:30 etc

which is even less secure as it's writable by all!

> So he's wrong!
> >
> > Michael Slater
> > Internet Express
> > Perth, Western Australia
> >
> >
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-questions" in the body of the message
> 
> --
>                            __o
> regards, Gunnar       ---_ \<,_
> email: flygt@sr.se ---- (_)/ (_)
> 
> If Bill Gates had a dime for every time a Windows box crashed...
> .. Oh, wait a minute, he already does."
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message

-- 
  Trust the computer industry to shorten Year 2000 to Y2K. It
  was this thinking that caused the problem in the first place.

Mark Ovens, CNC Applications Engineer, Radan Computational Ltd.
Bath, Avon, England.  Sheet Metal CAD/CAM Solutions
mailto:marko@uk.radan.com    http://www.radan.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3678D0CF.7FA8B106>