From owner-freebsd-security Sun Sep 19 11:25:51 1999 Delivered-To: freebsd-security@freebsd.org Received: from gndrsh.dnsmgr.net (GndRsh.dnsmgr.net [198.145.92.4]) by hub.freebsd.org (Postfix) with ESMTP id 1AC3C15177; Sun, 19 Sep 1999 11:25:42 -0700 (PDT) (envelope-from freebsd@gndrsh.dnsmgr.net) Received: (from freebsd@localhost) by gndrsh.dnsmgr.net (8.9.3/8.9.3) id LAA55646; Sun, 19 Sep 1999 11:24:58 -0700 (PDT) (envelope-from freebsd) From: "Rodney W. Grimes" Message-Id: <199909191824.LAA55646@gndrsh.dnsmgr.net> Subject: Re: Documentation of security features In-Reply-To: <4.2.0.58.19990919112902.0479f380@localhost> from Brett Glass at "Sep 19, 1999 11:30:41 am" To: brett@lariat.org (Brett Glass) Date: Sun, 19 Sep 1999 11:24:57 -0700 (PDT) Cc: jobe@attrition.org (Jobe), nbm@mithrandr.moria.org (Neil Blakey-Milner), dillon@apollo.backplane.com (Matthew Dillon), freebsd-security@FreeBSD.ORG, nik@FreeBSD.ORG (Nik Clayton) X-Mailer: ELM [version 2.4ME+ PL54 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > At 10:31 AM 9/19/99 -0600, Jobe wrote: > > >These files are 23k, are there really enough of them to take up 'Megs of > >Space'? > > If it's done for every shell command, it'll take up a LOT of room. It has been done for every shell command, that was the new builtin(1) that was just recently commited. And from a quick look there are 78 of them, 78*23K is not a lot of space 1.8MB. But the bigger picture is that when you now say ``man fg'' you should get the new builtin(1) man page, which is far smaller (uncompressed: -r--r--r-- 1 root wheel 7195 Sep 19 11:18 builtin.1). This man page refers you to sh(1), or csh(1) for full details. This should greatly reduce the size of the clutter (562KBytes uncompressed). Now there is one more problem, and that is what I think is really going on here with the person reporting non-linked files. They are looking in /usr/share/man/cat* at the formatted cache, now that can grow as man(1)'s cache can't tell if the source files are hard linked and generates an individual formatted copy for each man entry, even if it already has it filed under another name. > > >People need to start posting more meaningful things, and stop > >inventing reasons to post to this mailing list. > > Documenting key security options is meaningful, IMHO. If nothing > else, we should add links for securelevel and similar things that > users are not finding. Then go make ptx(info) produce the full blown permuted index again and be done with it. That is the standard unix tool for finding just about everything about anything in the manual pages. It has been missing for far to long to ignore any longer!! -- Rod Grimes - KD7CAX - (RWG25) rgrimes@gndrsh.dnsmgr.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message