From owner-freebsd-security  Mon Jul 28 14:15:13 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id OAA03470
          for security-outgoing; Mon, 28 Jul 1997 14:15:13 -0700 (PDT)
Received: from sasami.jurai.net (winter@sasami.jurai.net [207.96.1.17])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA03465
          for <security@FreeBSD.ORG>; Mon, 28 Jul 1997 14:15:09 -0700 (PDT)
Received: from localhost (winter@localhost)
	by sasami.jurai.net (8.8.5/8.8.5) with SMTP id RAA26643;
	Mon, 28 Jul 1997 17:14:39 -0400 (EDT)
Date: Mon, 28 Jul 1997 17:14:38 -0400 (EDT)
From: "Matthew N. Dodd" <winter@jurai.net>
To: Vincent Poy <vince@mail.MCESTATE.COM>
cc: security@FreeBSD.ORG
Subject: Re: security hole in FreeBSD
In-Reply-To: <Pine.BSF.3.95.970728122545.3844j-100000@mail.MCESTATE.COM>
Message-ID: <Pine.BSF.3.95q.970728171235.25254D-100000@sasami.jurai.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

On Mon, 28 Jul 1997, Vincent Poy wrote:
> 	I'll do that as soon as the machine comes back up.  I heard that
> suid programs can be a problem too but which ones are required to be suid?

As a general rule I set all suid/sgid system executeables schg and run
with securelevel set to 1 or 2.

Getting rid of any unecessary suid/sgid programs would be good too.

/* 
   Matthew N. Dodd		| A memory retaining a love you had for life	
   winter@jurai.net		| As cruel as it seems nothing ever seems to
   http://www.jurai.net/~winter | go right - FLA M 3.1:53	
*/