From owner-freebsd-bugs Sun Feb 23 05:39:25 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id FAA10229 for bugs-outgoing; Sun, 23 Feb 1997 05:39:25 -0800 (PST) Received: from grackle.grondar.za (dJRQD23EazqnRmVB/bTuApzEZazfabUd@grackle.grondar.za [196.7.18.131]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA10220; Sun, 23 Feb 1997 05:39:18 -0800 (PST) Received: from grackle.grondar.za (m7bIXhcef5nML0oMRbpBkdRpICrOOR/u@localhost [127.0.0.1]) by grackle.grondar.za (8.8.5/8.8.4) with ESMTP id PAA29102; Sun, 23 Feb 1997 15:37:49 +0200 (SAT) Message-Id: <199702231337.PAA29102@grackle.grondar.za> X-Mailer: exmh version 2.0gamma 1/27/96 To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch) cc: guido@gvr.win.tue.nl (Guido van Rooij), mpp@freefall.freebsd.org, freebsd-bugs@freefall.freebsd.org Subject: Re: bin/1882 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 23 Feb 1997 15:37:39 +0200 From: Mark Murray Sender: owner-bugs@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk wrote: > As Guido van Rooij wrote: > > > > (I don't thinkt it's a security flaw, since the default /etc/group > > > ships with just root in group wheel.) > > > > Neither do I. The behaviour has always been that if wheel is empty, > > su will be possible for anyone. > > Are you sure? The PR (see subject) seems to tell otherwise, and even > suggests a patch to get exact this behaviour. When in doubt, RTSL. There is a define that you can frob in su to turn this on/off - WHEELSU. M -- Mark Murray PGP key fingerprint = 80 36 6E 40 83 D6 8A 36 This .sig is umop ap!sdn. BC 06 EA 0E 7A F2 CE CE