Date: Thu, 11 Sep 1997 01:33:46 +0200 From: Gary Howland <gary@hotlava.com> To: freebsd-security@FreeBSD.ORG Subject: Re: Kernel Install Permissions Message-ID: <199709102334.QAA06556@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
> Jamil J. Weatherbee writes: > > > > This is just a personal opinion, and maybye it is uneducated, but is there > > really some reason for the kernel to be installed chmod 555, wouldn't 544 > > or even maybye 444 do (I'm not to familiar with the bootloader, I would > > guess that it doesn't execute /kernel in the same way a coff binary is > > executed so permissions probably don't matter hunh?) > > Perhaps even 550 or 540 with group kmem or something. Better still make it unmodifiable with chflags (assumming that you're running at a suitable security level). Gary
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199709102334.QAA06556>