From owner-freebsd-security  Wed Oct  4  2:32:53 2000
Delivered-To: freebsd-security@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id BBC7B37B66C; Wed,  4 Oct 2000 02:32:49 -0700 (PDT)
Received: (from kris@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) id CAA81888;
	Wed, 4 Oct 2000 02:32:49 -0700 (PDT)
	(envelope-from kris@FreeBSD.org)
Date: Wed, 4 Oct 2000 02:32:49 -0700
From: Kris Kennaway <kris@FreeBSD.org>
To: Dima Dorfman <dima@unixfreak.org>
Cc: Kris Kennaway <kris@FreeBSD.org>,
	Alfred Perlstein <bright@wintelcom.net>,
	Mike Silbersack <silby@silby.com>, security@FreeBSD.ORG
Subject: Re: BSD chpass (fwd)
Message-ID: <20001004023249.B76230@freefall.freebsd.org>
References: <20001004021948.A76230@freefall.freebsd.org> <20001004092758.335931F0A@static.unixfreak.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20001004092758.335931F0A@static.unixfreak.org>; from dima@unixfreak.org on Wed, Oct 04, 2000 at 02:27:58AM -0700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Wed, Oct 04, 2000 at 02:27:58AM -0700, Dima Dorfman wrote:

> Actually, I think you can do it without null mounts.  mv /usr/bin
> /usr/bin2, chmod 000 /usr/bin2, then remake /usr/bin (without chpass,
> of course).

I think you're right. Which is a good reason why your /usr/bin should
be schg too ;-)

Kris

--
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe@alum.mit.edu>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message