From owner-freebsd-security@FreeBSD.ORG Sat Jun 23 14:03:46 2012 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id D81C9106564A for ; Sat, 23 Jun 2012 14:03:46 +0000 (UTC) (envelope-from des@des.no) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id 97F508FC1A for ; Sat, 23 Jun 2012 14:03:46 +0000 (UTC) Received: from ds4.des.no (smtp.des.no [194.63.250.102]) by smtp.des.no (Postfix) with ESMTP id 7F5296501; Sat, 23 Jun 2012 14:03:45 +0000 (UTC) Received: by ds4.des.no (Postfix, from userid 1001) id 2E8C6893A; Sat, 23 Jun 2012 16:03:45 +0200 (CEST) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: "Julian H. Stacey" References: <201206221810.q5MI9tuR054055@fire.js.berklix.net> Date: Sat, 23 Jun 2012 16:03:44 +0200 In-Reply-To: <201206221810.q5MI9tuR054055@fire.js.berklix.net> (Julian H. Stacey's message of "Fri, 22 Jun 2012 20:09:55 +0200") Message-ID: <86hau22khr.fsf@ds4.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.3 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: freebsd-security@freebsd.org Subject: Re: / owned by bin causes sshd to complain bad ownership X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 23 Jun 2012 14:03:46 -0000 "Julian H. Stacey" writes: > I don't question the "user or" that's fine It's the final "root" I > find strange. I guess whoever wrote sshd was so used to "root" > they never considered "bin" could be better. Maybe they did, and decided it wasn't. I'm firmly of the opinion that it isn't. You also have to consider the cost of maintaining a list of "safe" owners, and the fact that this list may vary from OS to OS. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no