Date: Mon, 14 Jun 1999 14:37:34 -0400 From: David Shaw <dshaw@jabberwocky.com> To: freebsd-security@FreeBSD.ORG Subject: Re: reading files. Message-ID: <19990614143734.B4439@jabberwocky.com> In-Reply-To: <Pine.GSO.3.96.990614110658.7830A-100000@sol.cs.binghamton.edu>; from Zhihui Zhang on Mon, Jun 14, 1999 at 11:10:48AM -0400 References: <Pine.BSF.4.10.9906131445410.7278-100000@fkr.dynip.com> <Pine.GSO.3.96.990614110658.7830A-100000@sol.cs.binghamton.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jun 14, 1999 at 11:10:48AM -0400, Zhihui Zhang wrote: > > On Sun, 13 Jun 1999, Jason L. Schwab wrote: > > > > > I heard that there is a way to read any file on a freebsd system as a > > normal non-root user.. is this true? if so can some one give me some info > > on this? thanks. > > Unless you are root or has somehow gotten the root password. Or you may > steal the hard drive and examine it elsewhere. BTW, I know Windows-NT has > a feature that does not allow the Administrator (known as root in Unix) to > access the file of a normal user. I wonder if this feature can be added > to FreeBSD easily. It's true that the NT Administrator can't read files that he doesn't have permission for, but since Administrator controls the ACLs, if he can't read something, he can trivially just change the permissions and give himself access! David -- David Shaw | dshaw@jabberwocky.com | WWW http://www.jabberwocky.com/ +---------------------------------------------------------------------------+ "There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence." - Jeremy S. Anderson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990614143734.B4439>