On Wed, Oct 06, 1999 at 11:18:59PM +0900, Daniel C. Sobral wrote: > One would better assume that files available over NFS will be read > by anyone who wants, and, likewise, that files available on > removable media will be read by anyone who wants. That side of the > problem does not belong to this discussion. > > [...] > > The question here is how to minimize the cost/benefit ratio of > letting users mount external file systems on their own. At the very > least, the system must never trust that data. Ergo, no suid/sgid. Show me a disk that's _not_ removable. By your logic we would have _no_ sguid/sgid binaries _ever._ Physical access to a machine is always a security risk. Why would you treat easily-removable media any differently to slightly-harder-to-remove media? You still need to break into the vault to remove them. Joe To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
- Apple's planned appoach to permissions on movable filesys... Pat Dirks
- Re: Apple's planned appoach to permissions on movabl... David Wolfskill
- Re: Apple's planned appoach to permissions on movabl... Alfred Perlstein
- Re: Apple's planned appoach to permissions on movabl... David Scheidt
- Re: Apple's planned appoach to permissions on movabl... Daniel C. Sobral
- Re: Apple's planned appoach to permissions on mo... Conrad Minshall
- Re: Apple's planned appoach to permissions o... Daniel C. Sobral
- Re: Apple's planned appoach to permissio... Joe Abley
- Re: Apple's planned appoach to perm... Matthew Dillon
- Re: Apple's planned appoach to perm... Daniel C. Sobral
- Re: Apple's planned appoach to permissions on movabl... Narvi
- Re: Apple's planned appoach to permissions on movabl... Alban Hertroys
- Re: Apple's planned appoach to permissions on mo... Darren R. Davis
- Re: Apple's planned appoach to permissions on movabl... Brian Somers
- Re: Apple's planned appoach to permissions on movabl... Wilfredo Sanchez
- Re: Apple's planned appoach to permissions on mo... Alban Hertroys
