Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: Bill Moritz <ego@...>
From: Bill Kenworthy <billk@...>
Subject: Re: Changes to traceroute in newest release
Date: Wed, 17 Dec 2003 09:33:19 +0800
Or to turn it around, on a user managed workstation its both
inconvenient and adds little to security.  In fact, its easiest to just
keep a root window open and run it from there - which is insecure if you
walk away and leave it running.

The point I am trying to make is that forcing useful tools to run as
root for everyone makes little sense on a user managed workstation and
can be counter-productive as above when users just work around the
restrictions in an insecure manner.

Perhaps a "secure_options" use flag to cater for those who work in
multiuser/insecure environments?  I would rather not suffer an unusable
system because a few users have special requirements.

BillK

On Wed, 2003-12-17 at 09:16, Bill Moritz wrote:
> > SUID exploits are based on the premise that you've already access to 
> > the system in question. If you don't trust people with accounts on 
> > your system, they shouldn't have it.
> 
> What about people that run shell servers?  Should I have an interview 
> process and a background check on anyone that wants to pay for access to my 
> systems?
> 
> > Just another $.02
> > 
> > -d
> 
> -bill
> 
> --
> gentoo-security@g.o mailing list



--
gentoo-security@g.o mailing list

Replies:
Re: Changes to traceroute in newest release
-- Bill Moritz
References:
Re: Changes to traceroute in newest release
-- Michael Reilly
Re: Changes to traceroute in newest release
-- James Dennis
Re: Changes to traceroute in newest release
-- David Olsen
Re: Changes to traceroute in newest release
-- Jesse
Re: Changes to traceroute in newest release
-- David Olsen
Re: Changes to traceroute in newest release
-- Bill Moritz
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Changes to traceroute in newest release
Next by thread:
Re: Changes to traceroute in newest release
Previous by date:
Re: Changes to traceroute in newest release
Next by date:
Re: Changes to traceroute in newest release


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.