Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!utgpu!water!watmath!clyde!rutgers!mit-eddie!genrad!decvax!ucbvax!sdcsvax!nosc!humu!uhmanoa!uhccux!todd
From: todd@uhccux.UUCP
Newsgroups: comp.unix.wizards
Subject: Re: /etc/rc, security ...
Message-ID: <442@uhccux.UUCP>
Date: Wed, 22-Apr-87 16:28:36 EST
Article-I.D.: uhccux.442
Posted: Wed Apr 22 16:28:36 1987
Date-Received: Fri, 24-Apr-87 03:47:03 EST
References: <623@rna.UUCP> <439@uhccux.UUCP> <6405@mimsy.UUCP>
Reply-To: todd@uhccux.UUCP (The Perplexed Wiz)
Organization: U. of Hawaii, Manoa (Honolulu)
Lines: 17

In article <6405@mimsy.UUCP> chris@mimsy.UUCP (Chris Torek) writes:
>That the various daemons in /etc are runnable by all in 4.xBSD is
>*not* a security hole.  It *is* an annoyance.  But then, anyone
>can use syslog to blither all over your console and/or log files.

The /etc stuff is not too bad (as you mention), however there are a
whole bunch of directories and files with public write permissions
set when 4.xbsd is dumped to disk fresh from a tape.

As for the /etc stuff.  I just turned off public access to the
possibly annoying stuff...todd

-- 
Todd Ogasawara, U. of Hawaii Computing Center
UUCP:		{ihnp4,seismo,ucbvax,dcdwest}!sdcsvax!nosc!uhccux!todd
ARPA:		uhccux!todd@nosc.MIL
INTERNET:	todd@uhccux.UHCC.HAWAII.EDU