From owner-freebsd-security Thu Sep 7 07:50:08 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.freebsd.org (8.6.11/8.6.6) id HAA02764 for security-outgoing; Thu, 7 Sep 1995 07:50:08 -0700 Received: from strider.ibenet.it ([194.179.130.1]) by freefall.freebsd.org (8.6.11/8.6.6) with ESMTP id HAA02713 for ; Thu, 7 Sep 1995 07:49:53 -0700 Received: (from piero@localhost) by strider.ibenet.it (8.6.12/8.6.12) id QAA20015; Thu, 7 Sep 1995 16:52:42 +0200 From: Piero Serini Message-Id: <199509071452.QAA20015@strider.ibenet.it> Subject: Re: Do we *really* need logger(1)? To: wollman@lcs.mit.edu (Garrett A. Wollman) Date: Thu, 7 Sep 1995 16:52:41 +0200 (MET DST) Cc: tom@uniserve.com, freebsd-security@freebsd.org In-Reply-To: <9509062102.AA21414@halloran-eldar.lcs.mit.edu> from "Garrett A. Wollman" at Sep 6, 95 05:02:50 pm Reply-To: piero@strider.ibenet.it Operating-System: FreeBSD 1.1.5.1 X-Phone-Number: +39 (2) 58113562 X-Mailer: ELM [version 2.4 PL23] Content-Type: text Content-Length: 764 Sender: security-owner@freebsd.org Precedence: bulk Hello. Quoting from Garrett A. Wollman (Wed Sep 6 23:02:50 1995): > As for `logger', it's a useful tool that anyone could write if it did > not exist before. People running public-access systems should do the > same thing to `logger' as they do to `cc', `as', and `ld'. And cat and ftp... I can compile logger on another FreeBSD machine and then import it in my personal ~/bin on the PA host. If you run a PA system, you alread have NO security. If you give your users a restricted shell, you aren't running a useful service any more. Bye, -- # $Id: .signature,v 1.12 1995/08/14 12:10:54 piero Exp $ Piero Serini Via Giambologna, 1 I 20136 Milano - ITALY