From owner-freebsd-hackers  Thu Feb  8 17: 8:37 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from gw.gbch.net (gw.gbch.net [203.24.22.66])
	by hub.freebsd.org (Postfix) with SMTP id DCCB137B698
	for <hackers@freebsd.org>; Thu,  8 Feb 2001 17:08:17 -0800 (PST)
Received: (qmail 65070 invoked by uid 1001); 9 Feb 2001 11:08:13 +1000
X-Posted-By: GJB-Post 2.12 07-Feb-2001
X-Operating-System: FreeBSD 4.1-RELEASE i386
X-URL: http://www.gbch.net/gjb/
X-Image-URL: http://www.gbch.net/gjb/img/gjb-auug048.gif
X-PGP-Fingerprint: 5A91 6942 8CEA 9DAB B95B  C249 1CE1 493B 2B5A CE30
X-PGP-Public-Key: http://www.gbch.net/gjb/gjb-pgpkey.asc
Message-Id: <nospam-3a8342fd530fe03@maxim.gbch.net>
Date: Fri, 09 Feb 2001 11:08:13 +1000
From: Greg Black <gjb@gbch.net>
To: Nick Sayer <nsayer@quack.kfu.com>
Cc: hackers@freebsd.org
Subject: Re: /etc/security: add md5 to suid change notification? 
References: <200102082355.f18NtfF89134@medusa.kfu.com> 
In-reply-to: <200102082355.f18NtfF89134@medusa.kfu.com> 
	of Thu, 08 Feb 2001 15:55:41 PST
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Nick Sayer wrote:

> Would it generally be viewed as helpful to add the option of reporting
> the md5 for the files listed in /var/log/setuid.*?

I don't see the benefit in this if either the md5 binary or the
comparison file are on writable storage (which is almost always
going to be true).


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message