Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 27 Aug 2002 07:50:08 -0700 (PDT)
From:      Giorgos Keramidas <keramida@FreeBSD.ORG>
To:        freebsd-bugs@FreeBSD.org
Subject:   Re: i386/42053: /root incorrect permissions
Message-ID:  <200208271450.g7REo8pB030479@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

The following reply was made to PR i386/42053; it has been noted by GNATS.

From: Giorgos Keramidas <keramida@FreeBSD.ORG>
To: Ceri Davies <setantae@submonkey.net>
Cc: bug-followup@FreeBSD.ORG
Subject: Re: i386/42053: /root incorrect permissions
Date: Tue, 27 Aug 2002 17:02:58 +0300

 On 2002-08-27 12:58 +0000, Ceri Davies wrote:
 > On 2002-08-27 03:50 +0300, Giorgos Keramidas wrote:
 > > > >Fix:
 > > > chmod 700 /root in installworld scripts.
 > >
 > > It's not like you're letting hackers find out stuff with this.
 > > You can always keep critical things under /root/foo where foo is
 > > chmoded to 0700.  Is there really a point in changing the
 > > permissions to be more right?
 >
 > I don't think so.  There's nothing in /root that should be hidden
 > from anyone by default, [...]
 
 I'm not really objecting to the change, just wondering if it's worth
 keeping a ``fairly open'' or switch to a ``more conservative'' set of
 permissions.  I like being able to `cat ~root/.cshrc' but the /root
 directory is rather empty here and I'm practically the only local user
 of the machine.  Nothing to hide, in the first place.  However, if
 someone wants to locally patch /etc/mtree files, or commit the change,
 it's an one liner:
 
 %%%
 Index: BSD.root.dist
 ===================================================================
 RCS file: /home/ncvs/src/etc/mtree/BSD.root.dist,v
 retrieving revision 1.58
 diff -u -r1.58 BSD.root.dist
 --- BSD.root.dist	10 Jun 2002 04:47:26 -0000	1.58
 +++ BSD.root.dist	27 Aug 2002 14:00:33 -0000
 @@ -67,7 +67,7 @@
      ..
      proc            mode=0555
      ..
 -    root
 +    root            mode=0700
      ..
      sbin
      ..
 %%%

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200208271450.g7REo8pB030479>