From owner-freebsd-security  Fri Jul  9 14:29: 0 1999
Delivered-To: freebsd-security@freebsd.org
Received: from mercurio.nar.ufv.br (mercurio.nar.ufv.br [200.18.130.84])
	by hub.freebsd.org (Postfix) with SMTP id 096BF14E2C
	for <security@FreeBSD.ORG>; Fri,  9 Jul 1999 14:28:49 -0700 (PDT)
	(envelope-from kernel@tdnet.com.br)
Received: (qmail 412 invoked from network); 9 Jul 1999 21:22:37 -0000
Received: from mercurio.nar.ufv.br (HELO tdnet.com.br) (200.18.130.84)
  by mercurio.nar.ufv.br with SMTP; 9 Jul 1999 21:22:37 -0000
Message-ID: <3786681C.3882C645@tdnet.com.br>
Date: Fri, 09 Jul 1999 18:22:36 -0300
From: Gustavo V G C Rios <kernel@tdnet.com.br>
X-Mailer: Mozilla 4.51 [en] (X11; I; SunOS 5.5.1 sun4u)
X-Accept-Language: en
MIME-Version: 1.0
To: Warner Losh <imp@village.org>
Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>,
	security@FreeBSD.ORG, bos-owner-br@sekure.org
Subject: Re: suid/guid
References: <xzpso6xrcen.fsf@flood.ping.uio.no>  <3784D440.1075EFB3@tdnet.com.br> <199907091622.KAA20280@harmony.village.org> <199907091658.KAA20551@harmony.village.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Yeah, it sounds great.
IMHO, Common users should not be concerned about things related to
admin.
A good approach would be to design software in which no special
privilegies should be required for common users use it.
It would be nice to have one system just installed not many s/guid flags
seted.
So, if it's necessary to have any other thing, you (Sysadmin) should
enable by himself.

In 5 words: DENY every thing by default.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message