From owner-freebsd-security  Tue May 21 23:55:46 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id XAA22752
          for security-outgoing; Tue, 21 May 1996 23:55:46 -0700 (PDT)
Received: from relay.philips.nl (ns.philips.nl [130.144.65.1])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id XAA22747
          for <freebsd-security@FreeBSD.ORG>; Tue, 21 May 1996 23:55:43 -0700 (PDT)
Received: (from smap@localhost) by relay.philips.nl (8.6.9/8.6.9-950414) id IAA16103; Wed, 22 May 1996 08:54:19 +0200
Received: from unknown(192.26.173.32) by ns.philips.nl via smap (V1.3+ESMTP) with ESMTP
	id sma016042; Wed May 22 08:53:39 1996
Received: from spooky.lss.cp.philips.com (spooky.lss.cp.philips.com [130.144.199.105]) by smtp.nl.cis.philips.com (8.6.10/8.6.10-0.9z-02May95) with ESMTP id IAA01327; Wed, 22 May 1996 08:55:23 +0200
Received: (from guido@localhost) 
	by spooky.lss.cp.philips.com (8.6.10/8.6.10-0.991c-08Nov95) id IAA23614; Wed, 22 May 1996 08:53:31 +0200
From: Guido van Rooij <Guido.vanRooij@nl.cis.philips.com>
Message-Id: <199605220653.IAA23614@spooky.lss.cp.philips.com>
Subject: Re: [linux-security] Things NOT to put in root's crontab (fwd)
To: tom@uniserve.com (Tom Samplonius)
Date: Wed, 22 May 1996 08:53:31 +0200 (MET DST)
Cc: coredump@nervosa.com, freebsd-security@FreeBSD.ORG
In-Reply-To: <Pine.BSF.3.91.960521203607.17971A-100000@haven.uniserve.com> from "Tom Samplonius" at May 21, 96 08:54:18 pm
Reply-To: Guido.vanRooij@nl.cis.philips.com (Guido van Rooij)
X-Mailer: ELM [version 2.4 PL21]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

Tom Samplonius wrote:
> 
> 
> On Tue, 21 May 1996, Chris J. Layne wrote:
> 
> > I think this applies to our cleanup of /tmp in /etc/rc
> 
>   I think it doesn't.
> 
>   Our rm removes links, not files pointed to by links.  So:
> 
> cd /tmp
> ln -s /etc/passwd thing
> rm thing
> 
> will remove the link, not /etc/passwd.
> 
>   We are not dependant on find to produce a "valid" list of files, so 
> that rm does not remove something important.
> 

Besides, our find contains a -type, which also does not find symlinks (
as long as type is not l). Furthermore, the find is commented out
by default stating it is not secure.

-Guido