On Fri, 29 Dec 2006, Joachim Schipper wrote:
I'll try to give it a spin tomorrow, but I find it hard to reconcile the
above with
http://marc.theaimsgroup.com/?l=openbsd-ports&m=116722882621269&w=2
(Marc Espie (espie@) says he is 'shuddering about what a full scale
audit would reveal'). Even if you disagree with Marc, wouldn't it be a
good idea to have some warning somewhere - perhaps in a SECURITY file?
While I totally understand Marc's comment, he just wonders "what a full
scale audit would reveal"... maybe nothing!
By the way, this is true for other ports too.
For info, the daemon cannot be run at root. It is a small software so it
shouldn't be to hard to audit if people want to.
--
Antoine
