Date: Sat, 21 Nov 1998 21:56:29 -0800 From: Don Lewis <Don.Lewis@tsc.tdk.com> To: Bill Woodford <woodford@cc181716-a.hwrd1.md.home.com>, freebsd-security@FreeBSD.ORG Subject: Re: Would this make FreeBSD more secure? Message-ID: <199811220556.VAA00404@salsa.gv.tsc.tdk.com> In-Reply-To: Bill Woodford <woodford@cc181716-a.hwrd1.md.home.com> "Re: Would this make FreeBSD more secure?" (Nov 17, 3:10pm)
next in thread | previous in thread | raw e-mail | index | archive | help
On Nov 17, 3:10pm, Bill Woodford wrote: } Subject: Re: Would this make FreeBSD more secure? } } On Sun, 15 Nov 1998, Andre Albsmeier wrote: } | For example: } | } | root@voyager:~>ll /etc/spwd.db /etc/master.passwd } | -rw-r----- 1 root pw - 828 Nov 15 12:43 /etc/master.passwd } | -rw-r----- 1 root pw - 40960 Nov 15 12:43 /etc/spwd.db One caution: if you NFS export /etc to any untrusted systems (even read-only), they will now be able to read your password database. With 0600 root permissions, this was not possible because of the root -> nobody translation that NFS does by default. --- Truck To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811220556.VAA00404>