Date: Tue, 23 Jan 1996 09:42:35 +0100 (MET) From: Ollivier Robert <roberto@keltia.freenix.fr> To: nlawson@statler.csc.calpoly.edu (Nathan Lawson) Cc: security@FreeBSD.org Subject: Re: Ownership of files/tcp_wrappers port Message-ID: <199601230842.JAA06930@keltia.freenix.fr> In-Reply-To: <199601222147.NAA09887@statler.csc.calpoly.edu> from "Nathan Lawson" at Jan 22, 96 01:47:40 pm
next in thread | previous in thread | raw e-mail | index | archive | help
It seems that Nathan Lawson said: > First, I don't mean to beat a dead horse, but I think this issue has never > been adequately considered: less "bin" ownership of files and directories. > The advantages of more root-owned directories and files are that root is I already tried to change the ownership long ago, even with a patch but I was told it was the traditional BSD way so I changed it on my box. Another reason is that it is usually more difficult to break into root than into another user so ownership by root should prevent most modifications of the system binaries. > Secondly, I was wondering why the tcp_wrappers distribution didn't make it > into the source tree instead of being a port. It's a pretty small program > that hasn't received too many changes recently. It's very worthwhile and > libwrap.a can be linked into portmap and ypserv a lot more easily (even > making this the default, perhaps). That would be nice too. Many Linux dists ship the system with TCP_Wrapper installed. -- Ollivier ROBERT -=- The daemon is FREE! -=- roberto@keltia.frmug.fr.net FreeBSD keltia.freenix.fr 2.2-CURRENT #1: Sun Jan 14 20:23:45 MET 1996
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199601230842.JAA06930>