Date: Wed, 15 Apr 1998 23:49:25 -0700 (PDT) From: Jan Koum <jkb@best.com> To: Ted Spradley <tsprad@set.spradley.tmi.net> Cc: Dima Ruban <dima@best.net>, "Louis A. Mamakos" <louie@TransSys.COM>, trost@cloud.rain.com, stable@FreeBSD.ORG Subject: Re: kernel permissions Message-ID: <Pine.BSF.3.96.980415234725.6355A-100000@shell6.ba.best.com> In-Reply-To: <E0yPgmY-0004v7-00@set.spradley.tmi.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 16 Apr 1998, Ted Spradley wrote: > >> > By this reasoning, there's no point in removing read permission either. >> >> Of course there is. Because user doesn't need to have this information. > >Is this what your argument boils down to -- *Your* users don't have a >'Need to Know' (to use the Pentagon expression). Maybe I prefer to >encourage my users to learn as much as they will about the system. Maybe >I take a very negative attitude about keeping any information secret, so >I consider long and hard before I remove read permission for anybody from >any information. Maybe that's why I use a system that has freely >available source code. > > What does source code availability has to do with system security? Do you also have /root/.ssh/* world readable as well as /etc/master.passwd? *grin* I mean.. your users can learn about ssh and passwd, right? -- Yan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980415234725.6355A-100000>