From owner-freebsd-security  Wed Dec 20 23: 6:26 2000
From owner-freebsd-security@FreeBSD.ORG  Wed Dec 20 23:06:23 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mailhost01.reflexnet.net (mailhost01.reflexnet.net [64.6.192.82])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1975E37B400; Wed, 20 Dec 2000 23:06:23 -0800 (PST)
Received: from rfx-64-6-211-149.users.reflexcom.com ([64.6.211.149]) by mailhost01.reflexnet.net  with Microsoft SMTPSVC(5.5.1877.197.19);
	 Wed, 20 Dec 2000 23:04:13 -0800
Received: (from cjc@localhost)
	by rfx-64-6-211-149.users.reflexcom.com (8.11.0/8.11.0) id eBL75m088159;
	Wed, 20 Dec 2000 23:05:48 -0800 (PST)
	(envelope-from cjc)
Date: Wed, 20 Dec 2000 23:05:48 -0800
From: "Crist J. Clark" <cjclark@reflexnet.net>
To: Jason DiCioccio <Jason.DiCioccio@Epylon.com>
Cc: "'Kris Kennaway'" <kris@FreeBSD.ORG>,
	Alfred Perlstein <bright@wintelcom.net>,
	Mark Zielinski <markz@2cactus.com>, cjclark@alum.mit.edu,
	freebsd-security@FreeBSD.ORG
Subject: Re: Read-Only Filesystems
Message-ID: <20001220230548.V96105@149.211.6.64.reflexcom.com>
Reply-To: cjclark@alum.mit.edu
References: <657B20E93E93D4118F9700D0B73CE3EA024346@goofy.epylon.lan>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <657B20E93E93D4118F9700D0B73CE3EA024346@goofy.epylon.lan>; from Jason.DiCioccio@Epylon.com on Wed, Dec 20, 2000 at 06:05:58PM -0800
Sender: cjc@rfx-64-6-211-149.users.reflexcom.com
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, Dec 20, 2000 at 06:05:58PM -0800, Jason DiCioccio wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> The only way I could think of to do his securely in the current
> implementation is to chflags most of the etc dir (with the exception
> of files that did need to be cahnged like passwd master.passwd
> aliases, etc.).. mainly the rc files.. but this makes administering
> remotely a pain in the ass.. Of course, security in many cases comes
> with a hassle factor.

Hmmm... I was thinking that this would not be possible, to schg files
in /etc and still be able to use passwd(1), but provided that / is
schg, I can't seem to figure out how to mess with files in /etc with
schg. I was thinking I could fsdb(8) /etc, but I can't mess with a
mounted FS?! That's no fun!

I still think there is a way around this... Anyone know it? I'm tired
of reading 'Operation not permitted' as I try this out.
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message