[103] in linux-security and linux-alert archive
Re: tty permissions
daemon@ATHENA.MIT.EDU (Jeff Uphoff)
Fri Mar 10 16:35:17 1995
Date: Fri, 10 Mar 1995 16:09:47 -0500
From: Jeff Uphoff <juphoff@tarsier.cv.nrao.edu>
To: linux-security@tarsier.cv.nrao.edu
In-Reply-To: Your message of , March 10, 1995 12:31:23 -0500
Reply-To: linux-security@tarsier.cv.nrao.edu
"PB" == Panzer Boy <panzer@dhp.com> writes:
PB> This is starting to follow the security through obscurity thing a bit.
PB> It's nice to prevent people from running fdisk on your system, or dip.
PB> But if anyone can compile the damn thing, and upload a static binary to
PB> your system, you're not getting much security from it. (Some, but not much)
Of course, general users that have downloaded something like 'dip' or
'fdisk' can't do much with it if the permissions on the devices won't
permit it, nor can they set up SLIP unless they're root. ('dip' will
only be a crude dial-in terminal program to them in that case...)
"Hiding" /sbin and /usr/sbin seems to me like nothing more than making
the doormat half an inch higher hoping to deter bandits from entering
the house...
--Up.
--
Jeff Uphoff - systems/network admin. | juphoff@nrao.edu
National Radio Astronomy Observatory | jeff.uphoff@linux.org
Charlottesville, VA, USA | http://linux.nrao.edu/~juphoff/
