Date: Sat, 25 Sep 1999 20:13:27 -0400 (EDT) From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com> To: freebsd-security@freebsd.org Subject: dump(8) Insecurity/Misconfiguration Message-ID: <199909260013.UAA47484@cc942873-a.ewndsr1.nj.home.com>
next in thread | raw e-mail | index | archive | help
When fooling around with dump(8), a couple of things occured to me (these are probably old news, but I want to make sure I don't break anything): 1) Since the disk devices in /dev are by default set group readable to operator, any member of operator has access to any files on the disk regardless of any permissions on a directory or file. 2) Will it break anything if I clear the group read bit on the disk devices? 3) dump(8) is setgid to group tty. Why? 4) Can I remove the setgid bit? -- Crist J. Clark cjclark@home.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199909260013.UAA47484>