From owner-freebsd-questions  Sun Jan 12 13:15:44 1997
Return-Path: <owner-questions>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.4/8.8.4) id NAA22353
          for questions-outgoing; Sun, 12 Jan 1997 13:15:44 -0800 (PST)
Received: from dumbo.hh.kew.com (root@dumbo.hh.kew.com [192.195.203.133])
          by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id NAA22343
          for <freebsd-questions@freebsd.org>; Sun, 12 Jan 1997 13:15:40 -0800 (PST)
Received: from sonata (sonata.hh.kew.com [192.195.203.135]) by dumbo.hh.kew.com (8.7.5/8.7.3) with SMTP id QAA24180; Sun, 12 Jan 1997 16:15:29 -0500 (EST)
Message-ID: <32D9546F.3D7C@kew.com>
Date: Sun, 12 Jan 1997 16:15:27 -0500
From: Drew Derbyshire <ahd@kew.com>
Organization: Kendra Electronic Wonderworks
X-Mailer: Mozilla 3.0 (WinNT; I)
MIME-Version: 1.0
To: Harlan Stenn <Harlan.Stenn@pfcs.com>
CC: freebsd-questions@freebsd.org
Subject: Re: Why aren't the ptys in /etc/ttys secure by default?
References: <19666.852634465@mumps.pfcs.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Harlan Stenn wrote:
> Does this seem like "enough" security to keep the pty's secure?  Without
> secure ptys, it's not possible to log in as root from an xterm.

I always try to avoid being root longer than needed.

I would not enable them as secure, since as another pointed out, you 
can/should login as another user in the wheel group and then su to root.

-- 
Internet:       ahd@kew.com             Voice:          617-279-9810

"You look good in black leather . . ."          -ahd-, out of context