From owner-freebsd-security  Tue Jul 16 09:00:35 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id JAA05573
          for security-outgoing; Tue, 16 Jul 1996 09:00:35 -0700 (PDT)
Received: from gatekeeper.fsl.noaa.gov (gatekeeper.fsl.noaa.gov [137.75.131.181])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id JAA05562;
          Tue, 16 Jul 1996 09:00:33 -0700 (PDT)
Received: from emu.fsl.noaa.gov (kelly@emu.fsl.noaa.gov [137.75.60.32]) by gatekeeper.fsl.noaa.gov (8.7.5/8.7.3) with ESMTP id QAA27336; Tue, 16 Jul 1996 16:00:25 GMT
Message-Id: <199607161600.QAA27336@gatekeeper.fsl.noaa.gov>
Received: by emu.fsl.noaa.gov
	(1.40.112.4/16.2) id AA108182855; Tue, 16 Jul 1996 10:00:55 -0600
Date: Tue, 16 Jul 1996 10:00:55 -0600
From: Sean Kelly <kelly@fsl.noaa.gov>
To: taob@io.org
Cc: phk@freebsd.org, freebsd-security@freebsd.org
In-Reply-To: <Pine.NEB.3.92.960716103736.13237F-100000@zap.io.org> (message
	from Brian Tao on Tue, 16 Jul 1996 10:39:14 -0400 (EDT))
Subject: Re: suidness of /usr/bin/login
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

>>>>> "Brian" == Brian Tao <taob@io.org> writes:

    Brian>     Other than that, there is no real need for it to be
    Brian> setuid root (since telnetd and getty are both already
    Brian> running as root).  I guess this would put it under "setuid
    Brian> root subject to local policy".

Exactly.  It's not a terribly useful feature anyway and of all whom I
know are even aware of it, none make use of it.  You can always log
out and back in!

-- 
Sean Kelly                          
NOAA Forecast Systems Laboratory    kelly@fsl.noaa.gov
Boulder Colorado USA                http://www-sdd.fsl.noaa.gov/~kelly/