From owner-freebsd-current Thu Nov 22 12: 7:46 2001 Delivered-To: freebsd-current@freebsd.org Received: from rover.village.org (rover.bsdimp.com [204.144.255.66]) by hub.freebsd.org (Postfix) with ESMTP id 63F9B37B405 for ; Thu, 22 Nov 2001 12:07:41 -0800 (PST) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.11.3/8.11.3) with ESMTP id fAMK7ea81377; Thu, 22 Nov 2001 13:07:40 -0700 (MST) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost [127.0.0.1]) by harmony.village.org (8.11.6/8.11.6) with ESMTP id fAMK7d718205; Thu, 22 Nov 2001 13:07:40 -0700 (MST) (envelope-from imp@harmony.village.org) Message-Id: <200111222007.fAMK7d718205@harmony.village.org> To: Hiten Pandya Subject: Re: [SUGGESTION] - disallowing shutdown after su(1) Cc: current@FreeBSD.ORG In-reply-to: Your message of "Thu, 22 Nov 2001 06:40:11 PST." <20011122144011.50097.qmail@web21104.mail.yahoo.com> References: <20011122144011.50097.qmail@web21104.mail.yahoo.com> Date: Thu, 22 Nov 2001 13:07:39 -0700 From: Warner Losh Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG In message <20011122144011.50097.qmail@web21104.mail.yahoo.com> Hiten Pandya writes: : correct me if i am wrong.. but.. : do you think, if we denied a shutdown after an su(1) : to root from a non-privileged user would be good... I think it would be a horrible idea. : this would be very good, i think if someone broke into : a normal user and was able to gain access into root : using su... (without a password..) This is the real problem. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message