From owner-freebsd-hackers Wed Apr 28 17:47:33 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from fep2-orange.clear.net.nz (fep2-orange.clear.net.nz [203.97.32.2]) by hub.freebsd.org (Postfix) with ESMTP id 5CE9514F42 for ; Wed, 28 Apr 1999 17:47:23 -0700 (PDT) (envelope-from jabley@buddha.clear.net.nz) Received: from buddha.clear.net.nz (buddha.clear.net.nz [192.168.24.106]) by fep2-orange.clear.net.nz (1.5/1.9) with ESMTP id MAA21688; Thu, 29 Apr 1999 12:47:20 +1200 (NZST) Received: (from jabley@localhost) by buddha.clear.net.nz (8.9.3/8.9.2) id MAA83327; Thu, 29 Apr 1999 12:47:12 +1200 (NZST) (envelope-from jabley) Date: Thu, 29 Apr 1999 12:47:12 +1200 From: Joe Abley To: Andrew Reilly Cc: hackers@FreeBSD.ORG, jabley@clear.co.nz Subject: Re: Adding desktop support Message-ID: <19990429124712.A82488@clear.co.nz> References: <199904282017.NAA01044@dingo.cdrom.com>; <19990429083638.B34373.kithrup.freebsd.hackers@gurney.reilly.home> <199904282244.PAA28325@kithrup.com> <19990429112538.D81921@clear.co.nz> <19990429093602.A35123@gurney.reilly.home> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.4i In-Reply-To: <19990429093602.A35123@gurney.reilly.home>; from Andrew Reilly on Thu, Apr 29, 1999 at 09:36:02AM +1000 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, Apr 29, 1999 at 09:36:02AM +1000, Andrew Reilly wrote: > On Thu, Apr 29, 1999 at 11:25:38AM +1200, Joe Abley wrote: > > On Wed, Apr 28, 1999 at 03:44:47PM -0700, Sean Eric Fagan wrote: > > > Putting icons in the executable itself is pretty stupid -- it's a single > > > instance of something that a window manager can use, and there are much > > > less-invasive ways of doing the same thing. > > > > What's invasive about it? > > It breaks the multi-user ownership/protection model. > > Regarding your comment about PGP signatures: the reason that we > don't need them is that for someone to be able to modify a (system) > executable on FreeBSD, they have to already be root on your system. > If they're root, they can do anything. They can't easily fake a PGP signature without access to the private key, though. I was assuming that the private key would expressly not be kept on a local fixed volume. Joe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message