On Fri, 21 Jul 2000, Mark Murray wrote:
> If you are worried about someone reading the disk of a rebooting box,
> then you need to be worried about console access; if your attacker has
> console, you are screwed anyway.
For most people, yes. But it's like all of the buffer overflows in
non-setuid utilities: they're not security risks for the vast majority of
users, but who's to say there won't be a situation somewhere when it is
one. Better not to take the risk, since it's not necessary here.
Kris
--
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <[EMAIL PROTECTED]>
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
- Re: randomdev entropy gathering is... Jeroen C. van Gelderen
- Re: randomdev entropy gathering is... Bruce Evans
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is really weak Dan Moschuk
- Re: randomdev entropy gathering is really weak Kris Kennaway
- Re: randomdev entropy gathering is really ... Mark Murray
- Re: randomdev entropy gathering is rea... Jeroen C. van Gelderen
- Re: randomdev entropy gathering is... Mark Murray
- Re: randomdev entropy gathering is... David Scheidt
- Re: randomdev entropy gathering is... Mark Murray
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is... Mark Murray
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is... Mark Murray
- Re: randomdev entropy gathering is... Kris Kennaway
- Re: randomdev entropy gathering is... Mark Murray
- RE: randomdev entropy gathering is... David Schwartz
- Re: randomdev entropy gathering is... Mark Murray
- RE: randomdev entropy gathering is... David Schwartz
