Date: Sun, 19 Apr 1998 15:52:58 +0000 From: Niall Smart <rotel@indigo.ie> To: fpscha@schapachnik.com.ar, robert+freebsd@cyrus.watson.org Cc: freebsd-security@FreeBSD.ORG Subject: Re: suid/sgid programs Message-ID: <199804191452.PAA00588@indigo.ie> In-Reply-To: "Fernando P. Schapachnik" <fpscha@localhost.schapachnik.com.ar> "Re: suid/sgid programs" (Apr 19, 12:26am)
next in thread | previous in thread | raw e-mail | index | archive | help
On Apr 19, 12:26am, "Fernando P. Schapachnik" wrote: } Subject: Re: suid/sgid programs > En un mensaje anterior Robert Watson escribi˘: > [...] > > We note also that a fairly large chunk of suid/sgid programs are UUCP > > programs -- something that a majority of FreeBSD users (I would guess?) do > > not use. In terms of reducing risk, disabling suid/sgid on these programs > > Don't be so sure. FreeBSD boxes are an excellent choice for UUCP servers. > Actually I have a few running (and planning to install more). I think the point he was making was that most users don't use UUCP, and therefore we shouldn't be shipping UUCP related utilities with set[ug]id bits. Presumably if you can configure UUCP you can use chmod. Niall -- Niall Smart. PGP: finger njs3@motmot.doc.ic.ac.uk FreeBSD: Turning PC's into Workstations: www.freebsd.org Annoy your enemies and astonish your friends: echo "#define if(x) if (!(x))" >> /usr/include/stdio.h To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199804191452.PAA00588>