From owner-freebsd-ports Tue Jul 7 15:47:49 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA14353 for freebsd-ports-outgoing; Tue, 7 Jul 1998 15:47:49 -0700 (PDT) (envelope-from owner-freebsd-ports@FreeBSD.ORG) Received: from limbo.rtfm.net (nathan@38.nyack.fcc.net [204.141.125.38]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA14348 for ; Tue, 7 Jul 1998 15:47:43 -0700 (PDT) (envelope-from nathan@limbo.rtfm.net) Received: (from nathan@localhost) by limbo.rtfm.net (8.8.8/8.8.8) id SAA22538; Tue, 7 Jul 1998 18:45:10 -0400 (EDT) (envelope-from nathan) Message-ID: <19980707184510.A22502@rtfm.net> Date: Tue, 7 Jul 1998 18:45:10 -0400 From: Nathan Dorfman To: Joe Greco Cc: ports@FreeBSD.ORG Subject: Re: Patch breaks tripwire security paradigm References: <199807071632.MAA20346@limbo.rtfm.net> <199807071917.OAA02914@aurora.sol.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <199807071917.OAA02914@aurora.sol.net>; from Joe Greco on Tue, Jul 07, 1998 at 02:17:45PM -0500 Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Jul 07, 1998 at 02:17:45PM -0500, Joe Greco wrote: > To make a long story short, it wasn't broken, those files are listed for > a reason, /root is already protected, and this patch substantially weakens > single-user security. It's Wrong. Kill it dead. You're right about sh -- it will read /.profile instead of /root/.profile when you're booting single-user. I just took down my machine to find out for myself, and was barely able to reconnect--lame ISP :>. Anyway, csh doesn't seem to execute any .cshrc or .login in single-user mode. Also, when in single-user mode, .rhosts and .forward probably don't mean all that much. As for .login, I didn't try and don't want to battle with PPP again. If csh won't read its startup files, I doubt it reads .logout... > ------------------------------------------------------------------------------- > Joe Greco - Systems Administrator jgreco@ns.sol.net > Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 -- ________________ ___________________________________________ / Nathan Dorfman \ / "My problems start when the smarter bears / nathan@rtfm.net \/ and the dumber visitors intersect." / finger for PGP key \ Steve Thompson, Yosemite wildlife biologist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message