From owner-freebsd-security Thu Jun 7 8:23: 9 2001 Delivered-To: freebsd-security@freebsd.org Received: from ringworld.nanolink.com (ringworld.nanolink.com [195.24.48.13]) by hub.freebsd.org (Postfix) with SMTP id D813837B406 for ; Thu, 7 Jun 2001 08:23:06 -0700 (PDT) (envelope-from roam@orbitel.bg) Received: (qmail 1695 invoked by uid 1000); 7 Jun 2001 15:21:52 -0000 Date: Thu, 7 Jun 2001 18:21:52 +0300 From: Peter Pentchev To: rich@rdrose.org Cc: freebsd-security@FreeBSD.ORG Subject: Re: root & toor Message-ID: <20010607182152.B724@ringworld.oblivion.bg> Mail-Followup-To: rich@rdrose.org, freebsd-security@FreeBSD.ORG References: <20010607100241.N30276-100000@axis.tdd.lt> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from rich@rdrose.org on Thu, Jun 07, 2001 at 04:06:01PM +0100 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Jun 07, 2001 at 04:06:01PM +0100, rich@rdrose.org wrote: > On Thu, 7 Jun 2001, Domas Mituzas wrote: > > toor has bourne shell, root has C shell. the only difference, afaik. > > Are *both* of these shells statically linked? Is toor's account disabled > by default? Does toor own any files on the system, by default? All login shells in the FreeBSD base system are statically linked - they are all placed in /bin, and everything in /bin and /sbin *must* be statically linked for obvious reasons (think NFS-mounted /usr). As others pointed out, yes, the toor account is disabled by default. and yes, toor owns all the root-owned files on the system :) G'luck, Peter -- If this sentence didn't exist, somebody would have invented it. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message