From owner-freebsd-stable Thu Apr 16 06:47:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA06615 for freebsd-stable-outgoing; Thu, 16 Apr 1998 06:47:08 -0700 (PDT) (envelope-from owner-freebsd-stable@FreeBSD.ORG) Received: from nyef.res.cmu.edu (qmailr@NYEF.RES.CMU.EDU [128.2.88.90]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id GAA06466 for ; Thu, 16 Apr 1998 06:46:26 -0700 (PDT) (envelope-from inf@nyef.res.cmu.edu) Received: (qmail 20674 invoked by uid 1000); 16 Apr 1998 13:39:16 -0000 Message-ID: <19980416093916.41527@nyef.res.cmu.edu> Date: Thu, 16 Apr 1998 09:39:16 -0400 From: Marca Registrada To: FreeBSD-Security@FreeBSD.ORG, FreeBSD-Stable@FreeBSD.ORG Subject: Re: kernel permissions Mail-Followup-To: FreeBSD-Security@freebsd.org, FreeBSD-Stable@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89i In-Reply-To: <199804160511.WAA03453@burka.rdy.com>; from Dima Ruban on Wed, Apr 15, 1998 at 10:11:28PM -0700 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk Quoting Dima Ruban (dima@best.net): > Okay. Here's an example. Ever hear of a commertially available drivers? > When you install such stuff, you don't want somebody to be able to read > them, or have a copy of kernel with them. Why? Because you did pay for them > and whoever wants to have an access - didnt. That would seem to be the exception rather than the norm. While I dont' debate why _some_ people would want a 440 kernel it feels like the security argument hasn't been filled, and otherwise, its creates the ever bit more presense of 'hostility' towards the user, and in this case, an unfounded one. I've actually had friends logged into my system 'borrow' my kernel config for their own system, make comments "Hrmm, so how's devfs working for you?" and do the same throughout most of my system, being that I'm the local "FreeBSD guru" who has converted people around him and (unknowningly?) took on the obligation to help. I've always been one for 'conf' options, so might I suggest this be a thing for 'config' to handle or a make.conf option? As a matter of fact, I was very happy that sendmail became a make.conf option, seeing as I use qmail and nearly ALWAYS forgot to replace sendmail after a make world. I think many such obvious policy issues should be configurable, with the predominant view the default. --- make.conf --- # To compile just the kernel with special optimisations, you should use # this instead of CFLAGS (which is not applicable to kernel builds anyway): # COPTFLAGS= -O2 -pipe KERNEL_OWNER root.kmem KERNEL_PERMS 444 #KERNEL_PERMS 440 ... Possibly in a more stylistically suitable format? -- - All we hear is internet gaagaa, internet googoo, internet gaagaa To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message