From owner-freebsd-hackers  Sat Nov  1 17:03:06 1997
Return-Path: <owner-freebsd-hackers>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id RAA18210
          for hackers-outgoing; Sat, 1 Nov 1997 17:03:06 -0800 (PST)
          (envelope-from owner-freebsd-hackers)
Received: from misery.sdf.com (misery.sdf.com [204.244.210.193])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id RAA18189
          for <freebsd-hackers@freebsd.org>; Sat, 1 Nov 1997 17:02:50 -0800 (PST)
          (envelope-from tom@sdf.com)
Received: from tom by misery.sdf.com with smtp (Exim 1.73 #1)
	id 0xRo9B-0003xK-00; Sat, 1 Nov 1997 16:44:09 -0800
Date: Sat, 1 Nov 1997 16:43:58 -0800 (PST)
From: Tom <tom@sdf.com>
To: James Raynard <fhackers@jraynard.demon.co.uk>
cc: Brandon Gillespie <brandon@roguetrader.com>, freebsd-hackers@freebsd.org
Subject: Re: Suggested addition to /etc/security
In-Reply-To: <19971030224420.52951@jraynard.demon.co.uk>
Message-ID: <Pine.BSF.3.95q.971101164134.15022I-100000@misery.sdf.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


On Thu, 30 Oct 1997, James Raynard wrote:

> > echo "checking for invalid user or group ids:"
> > 
> > find / -nouser -nogroup

  How does this check improve security?

  Also, shouldn't the security script be run under idprio?

Tom