From owner-freebsd-stable@FreeBSD.ORG Sat Jul 7 22:36:45 2007 Return-Path: X-Original-To: freebsd-stable@FreeBSD.org Delivered-To: freebsd-stable@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 38D8316A41F; Sat, 7 Jul 2007 22:36:45 +0000 (UTC) (envelope-from jhs@berklix.org) Received: from thin.berklix.org (thin.berklix.org [194.246.123.68]) by mx1.freebsd.org (Postfix) with ESMTP id BE4BB13C489; Sat, 7 Jul 2007 22:36:44 +0000 (UTC) (envelope-from jhs@berklix.org) Received: from js.berklix.net (p549A6C0B.dip.t-dialin.net [84.154.108.11]) (authenticated bits=128) by thin.berklix.org (8.12.11/8.12.11) with ESMTP id l67MaQWK022795; Sun, 8 Jul 2007 00:36:27 +0200 (CEST) (envelope-from jhs@berklix.org) Received: from fire.js.berklix.net (fire.js.berklix.net [192.168.91.41]) by js.berklix.net (8.13.6/8.13.6) with ESMTP id l67MaI7X043600; Sun, 8 Jul 2007 00:36:19 +0200 (CEST) (envelope-from jhs@berklix.org) Received: from fire.js.berklix.net (localhost.js.berklix.net [127.0.0.1]) by fire.js.berklix.net (8.13.8/8.13.8) with ESMTP id l67MaI7C073631; Sun, 8 Jul 2007 00:36:18 +0200 (CEST) (envelope-from jhs@fire.js.berklix.net) Message-Id: <200707072236.l67MaI7C073631@fire.js.berklix.net> To: Robert Watson In-reply-to: <20070706143347.S18110@fledge.watson.org> References: <200707031127.07413.h.schmalzbauer@omnisec.de> <200707031113.l63BDcZW036403@fire.js.berklix.net> <20070704083238.GA80543@voi.aagh.net> <200707041300.l64D08og087278@fire.js.berklix.net> <20070706143347.S18110@fledge.watson.org> Comments: In-reply-to Robert Watson message dated "Fri, 06 Jul 2007 14:34:25 +0100." Date: Sun, 08 Jul 2007 00:36:18 +0200 From: "Julian H. Stacey" Cc: freebsd-stable@FreeBSD.org, Harald Schmalzbauer Subject: Re: regular user can destroy disk label?!? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Jul 2007 22:36:45 -0000 Robert Watson wrote: > On Wed, 4 Jul 2007, Julian H. Stacey wrote: > > > Thomas Hurst wrote: > >> * Julian H. Stacey (jhs@berklix.org) wrote: > >> > >>> Either: > >>> - You made a typo with ar0s2 & meant ad0s2, > >>> - Or you really mean "ar" - man 4 ar reports a comms card ! > >> > >> ataraid(4) exposes ATA RAID devices as ar%d: > >> > >> -% man 4 ataraid |grep /dev > >> /dev/ar* ATA RAID device nodes > > > > Thanks Thomas, that explains name then. > > > > It doesnt affect thoughts on permissions though, unless driver very strange. > > Something people occasional get surprised by is the fact that members of the > operator group are given significant access to local disks, etc. Could user > account in question have been in the operator group? > > Robert N M Watson Good guess; No response seen though from questioner Harald S., (though my mail filter was in heavy change this week). BTW Harald S., Ian Smith wrote add -d: cd /dev ; ls -l -d . ar0s2 -- Julian Stacey. Munich Computer Consultant, BSD Unix C Linux. http://berklix.com HTML mail unseen. Ihr Rauch=mein allergischer Kopfschmerz. Dump cigs 4 snuff.