From owner-freebsd-current Sun Nov 7 10:31: 0 1999 Delivered-To: freebsd-current@freebsd.org Received: from slarti.muc.de (slarti.muc.de [193.149.48.10]) by hub.freebsd.org (Postfix) with SMTP id DB12214A07 for ; Sun, 7 Nov 1999 10:30:56 -0800 (PST) (envelope-from jhs@jhs.muc.de) Received: (qmail 16797 invoked from network); 7 Nov 1999 18:32:46 -0000 Received: from jhs.muc.de (193.149.49.84) by slarti.muc.de with SMTP; 7 Nov 1999 18:32:46 -0000 Received: (from jhs@localhost) by jhs.muc.de (8.9.3/8.9.3) id RAA17819; Sun, 7 Nov 1999 17:07:31 GMT (envelope-from jhs) Date: Sun, 7 Nov 1999 17:07:31 GMT Message-Id: <199911071707.RAA17819@jhs.muc.de> To: freebsd-current@freebsd.org Subject: new home directory for daemon From: "Julian Stacey" Reply-To: "Julian Stacey" Organization: Vector Systems Ltd - Unix & Internet consultancy X-Net: jhs@muc.de www.jhs.muc.de www.freebsd.org/~jhs/ bim.bsn.com/~jhs/ Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Problem: ~daemon/tmp should not be the same directory as ~root/tmp/ Suggestion: new home directory: daemon:*:1:1::0:0:Owner of many system processes:/daemon:/sbin/nologin + extend BSD.root.dist to create ~daemon/tmp Given existing current/src/: etc/master.passwd: root::0:0::0:0:Charlie &:/root:/bin/csh daemon:*:1:1::0:0:Owner of many system processes:/root:/sbin/nologin etc/group: wheel:*:0:root daemon:*:1:daemon etc/BSD.root.dist: .. root .. (but no root/tmp created) So assuming a manually created secure & private /root/tmp with owner root, group wheel, mode 700 This was just posted to the list, rather than made a send-pr, as I guess there may be better solutions ... Any Comments / Improvements ? -- Julian Stacey www.freebsd.org/~jhs/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message