FreeBSD Mail Archives

Date:      Mon, 3 Feb 2020 14:59:57 +0100 (CET)
From:      Wojciech Puchar <wojtek@puchar.net>
To:        "Rodney W. Grimes" <freebsd-rwg@gndrsh.dnsmgr.net>
Cc:        Gordon Bergling <gbergling@googlemail.com>, Wojciech Puchar <wojtek@puchar.net>, FreeBSD Hackers <freebsd-hackers@freebsd.org>, Ryan Stone <rysto32@gmail.com>
Subject:   Re: More secure permissions for /root and /etc/sysctl.conf
Message-ID:  <alpine.BSF.2.20.2002031458290.69078@puchar.net>
In-Reply-To: <202002011904.011J4rBB079499@gndrsh.dnsmgr.net>
References:  <202002011904.011J4rBB079499@gndrsh.dnsmgr.net>

>
> I still can not support that as a change:
> a) It has been 755 for 26 years on FreeBSD and also as long as
>   I can remeber (aka v4 research).  Changing it would be a POLA
>   violation.

so if it was wrong for so long, let keep it wrong.

>
> b) No known security flaw has been shown other than user error.

so simply set all files to 777. it's user error forgetting to change it to 
something else.

>
> c) The default for home directories in all the BSD's I looked at
>   are 755.

Not true.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.20.2002031458290.69078>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation