Date: Wed, 13 Jan 1999 08:54:06 -0500 (EST) From: andrewr <andrewr@slack.net> To: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl> Cc: FreeBSD Security <security@FreeBSD.ORG> Subject: Re: GIDs for new default system `users' Message-ID: <Pine.NEB.3.96.990113085054.7691A-100000@brooklyn.slack.net> In-Reply-To: <XFMail.990113100259.asmodai@wxs.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 13 Jan 1999, Jeroen Ruigrok/Asmodai wrote: > Hi guys, > > I have a question/remark I am very well concerned with... > > Is there something specific about nogroup btw, that it has this explicit > name? If not, if it's bascially the same as nobody, then I am all in favor > of moving those tty-sandbox and kmem-sandbox to their own group id's for > the sake of security... IMHO, just like qmail, any important service that is running on a machine, should have their own gid. I agree with you on this completely.. however it does seem kind of crazy to just go out and be throwing gid's around to everyone and every thing. -Andrew > > Comments? > > --- > Jeroen Ruigrok van der Werven A veil of smoke is what I am, > asmodai(at)wxs.nl I wait and I wait... > Network/Security Specialist <http://home.wxs.nl/~asmodai>; > BSD & picoBSD: The Power to Serve <http://www.freebsd.org>; > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96.990113085054.7691A-100000>