Date: Thu, 27 Jul 2000 21:33:01 +0200 From: Ollivier Robert <roberto@keltia.freenix.fr> To: arch@freebsd.org Subject: Re: How much security should ldconfig enforce? Message-ID: <20000727213301.A43542@keltia.freenix.fr> In-Reply-To: <XFMail.000726193613.jdp@polstra.com>; from jdp@polstra.com on Wed, Jul 26, 2000 at 07:36:13PM -0700 References: <XFMail.000726193613.jdp@polstra.com>
next in thread | previous in thread | raw e-mail | index | archive | help
According to John Polstra: > 1. It could allow anything, just like it did before I made my commit. > > 2. It could strictly enforce secure ownerships, groups, and > permissions -- i.e., keep last night's commit and add group > writability checking too. > > 3. It could default to strictly secure but accept a command-line > option to relax the constraints. And an rc.conf knob could be added > to control whether or not it was strict at boot time. #3 seems to me the Right Thing[tm]. -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 5.0-CURRENT #80: Sun Jun 4 22:44:19 CEST 2000 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000727213301.A43542>