Date: Wed, 6 Feb 2002 01:57:10 -0600 From: "Mike Meyer" <mwm-dated-1013414230.6827cf@mired.org> To: Cliff Sarginson <cliff@raggedclown.net> Cc: questions@freebsd.org Subject: Re: The mysterious ls -ol option Message-ID: <15456.57814.24842.401544@guru.mired.org> In-Reply-To: <51725360@toto.iv>
next in thread | previous in thread | raw e-mail | index | archive | help
Cliff Sarginson <cliff@raggedclown.net> types: > On Tue, Feb 05, 2002 at 04:44:08PM +0100, Cliff Sarginson wrote: > > On Tue, Feb 05, 2002 at 04:32:57PM +0100, Stijn Hoop wrote: > Mmm, not a widely used feature I see. > > There are 259,621 files on this particular system I am on at the moment. > /kernel is the only one of them with any of the flags set :) If that's true, your system has probably been broken into, and you should reinstall it from known safe media. The system normally has other files that have a flag set. > How comes I don't know about this ? Because it's not a standard Unix feature, and you haven't done anything - like elevated the security level of a machine and tried to install a kernel - that would cause you to notice them. There was a debate - on -hackers, I believe - about whether or not flags actually enhanced security in any way. I think the "yes" side won, or at least won enough that various things are flagged as unchangable. The nodump flag is also useful if you keep things like CD images around across dumps. If you don't elevate the security level, then the only flag that is really useful is nodump. If you do, then you can't turn off the schg and sappnd flags, and your system is slightly more secure. Oh yeah - I think the arch flag exists for FAT file systems, but I never used it on those either. <mike -- Mike Meyer <mwm@mired.org> http://www.mired.org/home/mwm/ Independent WWW/Perforce/FreeBSD/Unix consultant, email for more information. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15456.57814.24842.401544>