Date: Wed, 18 Nov 1998 02:17:54 +1300 (NZDT) From: Andrew McNaughton <andrew@squiz.co.nz> To: freebsd-security@FreeBSD.ORG Cc: Cliff Skolnick <cliff@steam.com>, Matthew Dillon <dillon@apollo.backplane.com>, William McVey <wam@sa.fedex.com>, Warner Losh <imp@village.org>, Andre Albsmeier <andre.albsmeier@mchp.siemens.de>, "Jordan K. Hubbard" <jkh@zippy.cdrom.com>, Dima Ruban <dima@best.net> Subject: Re: Would this make FreeBSD more secure? & sendmail changes in OpenBSD 2.4 Message-ID: <Pine.BSF.4.01.9811172202570.8181-100000@aniwa.sky> In-Reply-To: <Pine.BSF.4.05.9811162354100.26690-100000@lazlo.steam.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 17 Nov 1998, Cliff Skolnick wrote: > Adding the ability for non-root UID to access ports is a fundamental change > in the "standard UNIX way." The standard UNIX way to being how a number of > books explain to the novice systems programmer how to do it. I do agree > that the problem is real, but as a developer who wants a broad audience > consisting of all UNIX systems I will not use the FreeBSD specific feature. > Now we can argue that any security bug will be less harmful, but I also > wonder how harmful a day or week delay while a ports update is made can be. > But I will not only complain, here are a couple ideas. There is going to be an overhead involved in maintaining ports, but where a piece of software does not recognise the scheme, the worst case is that it has to be run as root until adapted, which is the current situation anyway. Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.01.9811172202570.8181-100000>