From owner-freebsd-questions@FreeBSD.ORG Wed Jun 16 16:08:51 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1A2F616A4CE for ; Wed, 16 Jun 2004 16:08:51 +0000 (GMT) Received: from mtiwmhc11.worldnet.att.net (mtiwmhc11.worldnet.att.net [204.127.131.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id CFA6443D54 for ; Wed, 16 Jun 2004 16:08:50 +0000 (GMT) (envelope-from j.e.drews@att.net) Received: from 204.127.135.43 ([204.127.135.43]) by worldnet.att.net (mtiwmhc11) with SMTP id <200406161608381110087bste>; Wed, 16 Jun 2004 16:08:38 +0000 Received: from [150.148.0.27] by 204.127.135.43; Wed, 16 Jun 2004 16:08:29 +0000 From: j.e.drews@att.net To: freebsd-questions@freebsd.org Date: Wed, 16 Jun 2004 16:08:29 +0000 Message-Id: <061620041608.19913.40D0707D000648FA00004DC921587667559C990A9D0BD20AD206@att.net> X-Mailer: AT&T Message Center Version 1 (May 27 2004) X-Authenticated-Sender: ai5lLmRyZXdzQGF0dC5uZXQ= Subject: Should gcc be accessable by others? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Jun 2004 16:08:51 -0000 Hi: I see that gcc, g++, and other tools are usable by world (others). I was wondering if that is a bad idea as I read here: http://www.itworld.com/nl/lnx_sec/09242002/pf_index.html that the slapper worm used gcc to compile it's exploit. Excerpt: The worm requires gcc to compile the .bugtraq.c file. .... Is it a good idea to change the permisions on the gcc tools to 750 ? I looked through the FreeBSD Handbook and could find no advice on this matter. Also are there other tools that should not be available like strace? How can I find out which ones are potentially exploitable? I am a newcomer to FreeBSD and have been using it for less than a year so don't be cross if these questions are naive. Kind regards, Jonathan