From owner-freebsd-arch  Fri Sep 15 15: 9:10 2000
Delivered-To: freebsd-arch@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP id 8BF2837B422
	for <freebsd-arch@FreeBSD.ORG>; Fri, 15 Sep 2000 15:09:06 -0700 (PDT)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id PAA08375;
	Fri, 15 Sep 2000 15:09:04 -0700
Received: from passer.osg.gov.bc.ca(142.32.110.29)
 via SMTP by point.osg.gov.bc.ca, id smtpda08373; Fri Sep 15 15:08:59 2000
Received: (from uucp@localhost)
	by passer.osg.gov.bc.ca (8.9.3/8.9.1) id PAA61752;
	Fri, 15 Sep 2000 15:08:58 -0700 (PDT)
Received: from cwsys9.cwsent.com(10.2.2.1), claiming to be "cwsys.cwsent.com"
 via SMTP by passer9.cwsent.com, id smtpdP61746; Fri Sep 15 15:08:56 2000
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.11.0/8.9.1) id e8FM8tZ26513;
	Fri, 15 Sep 2000 15:08:55 -0700 (PDT)
Message-Id: <200009152208.e8FM8tZ26513@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdw26507; Fri Sep 15 15:08:49 2000
X-Mailer: exmh version 2.1.1 10/15/1999
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-OS: FreeBSD 4.1-RELEASE
X-Sender: cy
To: "Alexander N. Kabaev" <ak03@gte.com>
Cc: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>,
	freebsd-arch@FreeBSD.ORG,
	Steve Kargl <sgk@troutmask.apl.washington.edu>,
	Will Andrews <will@physics.purdue.edu>,
	Daniel Eischen <eischen@vigrid.com>
Subject: Re: Rsh/Rlogin/Rcmd & friends 
In-reply-to: Your message of "Fri, 15 Sep 2000 17:58:34 EDT."
             <XFMail.000915175834.ak03@gte.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Fri, 15 Sep 2000 15:08:49 -0700
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

In message <XFMail.000915175834.ak03@gte.com>, "Alexander N. Kabaev" 
writes:
> > So what!  That's the price of security.  I believe that the 
> > telnet/ftp/"r" commands shouldn't even be ports.  We need to make it 
> > difficult to install unsafe software on the system.  That way the admin 
> > would have to go to all the trouble to find the source for unsafe 
> > software somewhere on the Net, port it, and install it.  Then it's not 
> > FreeBSD's fault if that admin's system is compromised.
> 
> Disabling corresponding inetd.conf entries will serve that purpose as well.
> Some of us work in places full of Unixes of all kinds and flavours and
> out-of-the-box interoperability argument presented by Steve makes a lot of
> sense in such an environment.
> 
> "Everything is the package" idea is OK as long as we will retain the option o
> f
> complete system upgrade using CVS/buildworld path. Forcing users to deal with
> every package separately will destroy that fuzzy feeling of completeness and
> tightly OS components integration FreeBSD was always famous for and IMHO will
> do more damage than good.
> 
> Please count my voice as "strongly against" proposed code removal.

How about a compromise?  Like an option or options in make.conf?  Then 
put telnet/ftp/"r" commands into an rcmddist distribution?


Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Team Leader, Sun/DEC Team   Internet:  Cy.Schubert@osg.gov.bc.ca
Open Systems Group, ITSD, ISTA
Province of BC





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message