Date: Sat, 23 Jan 1999 11:49:40 -0800 From: Coranth Gryphon <gryphon@healer.com> To: cjclark@home.com Cc: freebsd-security@FreeBSD.ORG Subject: Re: bin Directory Ownership Message-ID: <36AA27D4.C65CE38@healer.com> References: <199901230414.XAA02392@cc942873-a.ewndsr1.nj.home.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Am I being over protective? Is there a problem with my installation? > Do I need to relax? Most of the non-'bin' executables are either suid or sgid, and need to belong to the owner/group that they operate under. Doing a "chflags schg ..." will prevent them from being easily modified/hacked and likewise prevent the necessary permissions from being accidentally changed. As far as UID 'bin' not being secure, as I understand it, having the files owned by 'bin' is the same as having them owned by just about any other non-0 uid. It's the suid/sgid bits that cause potentail holes. -coranth To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?36AA27D4.C65CE38>