From owner-freebsd-isp Sun Feb 23 04:18:14 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id EAA07416 for isp-outgoing; Sun, 23 Feb 1997 04:18:14 -0800 (PST) Received: from gvr.win.tue.nl (root@gvr.win.tue.nl [131.155.210.19]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA07394; Sun, 23 Feb 1997 04:18:02 -0800 (PST) Received: (from guido@localhost) by gvr.win.tue.nl (8.8.5/8.8.2) id NAA16739; Sun, 23 Feb 1997 13:17:43 +0100 (MET) From: Guido van Rooij Message-Id: <199702231217.NAA16739@gvr.win.tue.nl> Subject: Re: improved setuid and device file checker for /etc/security In-Reply-To: <199702230636.WAA22830@salsa.gv.tsc.tdk.com> from Don Lewis at "Feb 22, 97 10:36:27 pm" To: Don.Lewis@tsc.tdk.com (Don Lewis) Date: Sun, 23 Feb 1997 13:17:42 +0100 (MET) Cc: freebsd-isp@FreeBSD.ORG, freebsd-security@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Don Lewis wrote: > A few weeks ago I solicited input on how to prevent locate.updatedb and > /etc/security wasting a lot of time digging around the article spool on > our news server. I got a lot of suggestions on different ways to tweak > these scripts to prevent this, but the suggestions mostly involved making > custom changes to these scripts that would be somewhat of a hassle to > maintain. The locate stuff is easy. You can specify parts that have to be skipped. If I remember corectly, it can be controlled by locate.conf in /etc. But only in 2.2. -Guido