From owner-freebsd-stable Wed Apr 15 23:49:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA00929 for freebsd-stable-outgoing; Wed, 15 Apr 1998 23:49:44 -0700 (PDT) (envelope-from owner-freebsd-stable@FreeBSD.ORG) Received: from shell6.ba.best.com (jkb@shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA00899 for ; Wed, 15 Apr 1998 23:49:32 -0700 (PDT) (envelope-from jkb@best.com) Received: from localhost (jkb@localhost) by shell6.ba.best.com (8.8.8/8.8.BEST) with SMTP id XAA06758; Wed, 15 Apr 1998 23:49:25 -0700 (PDT) X-Authentication-Warning: shell6.ba.best.com: jkb owned process doing -bs Date: Wed, 15 Apr 1998 23:49:25 -0700 (PDT) From: Jan Koum X-Sender: jkb@shell6.ba.best.com To: Ted Spradley cc: Dima Ruban , "Louis A. Mamakos" , trost@cloud.rain.com, stable@FreeBSD.ORG Subject: Re: kernel permissions In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk On Thu, 16 Apr 1998, Ted Spradley wrote: > >> > By this reasoning, there's no point in removing read permission either. >> >> Of course there is. Because user doesn't need to have this information. > >Is this what your argument boils down to -- *Your* users don't have a >'Need to Know' (to use the Pentagon expression). Maybe I prefer to >encourage my users to learn as much as they will about the system. Maybe >I take a very negative attitude about keeping any information secret, so >I consider long and hard before I remove read permission for anybody from >any information. Maybe that's why I use a system that has freely >available source code. > > What does source code availability has to do with system security? Do you also have /root/.ssh/* world readable as well as /etc/master.passwd? *grin* I mean.. your users can learn about ssh and passwd, right? -- Yan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message