Re: OpenBSD security could be tightened up easily

Being a genuine novice wrt OpenBSD, I am not overly qualified to pass judgement here. However, I read pretty much everything that is posted to misc@ and have read every one of Dave's troll-like rants, for the last couple of months. Sorry Dave, but from here you appear to be either a troll, an M$ em

Re: OpenBSD security could be tightened up easily

On 02/05/06 14:09, Dave Trollo Feustel wrote: It might also be a good idea to run pf by default with the rule "block all in" to prevent intruders taking advantage of undiagnosed security problems in kde or x11. ALL of my strange problems with kde have ceased since I started running pf with thi

Re: OpenBSD security could be tightened up easily

Just for reference, here is the original post in this thread, which for some reason, I do not find in the reverse misc archive. --- OpenBSD security could be tightened up easily Date: 2006-02-05 08:09 From: Dave Feustel <[EMAIL PROTE

Re: OpenBSD security could be tightened up easily

On Tue, 7 Feb 2006, Dave Feustel wrote: > On Tuesday 07 February 2006 13:16, Ted Unangst wrote: > > On 2/5/06, Dave Feustel <[EMAIL PROTECTED]> wrote: > > > Also, all x11 and kde sockets are created with permissions up to and > > > including 777 that can be restricted with no loss of functionality

Re: OpenBSD security could be tightened up easily

On 2/7/06, Dave Feustel <[EMAIL PROTECTED]> wrote: > Since all six x11/kde sockets that I chmod to 600 have me as the owner, > I assume that no one else should be connecting to those sockets. that's not true in general.

Re: OpenBSD security could be tightened up easily

Dave Feustel wrote: Since all six x11/kde sockets that I chmod to 600 have me as the owner, I assume that no one else should be connecting to those sockets. Since you didn't get it before, I'm doubtful that you'll get it now... but X has an authentication mechanism for *things written to the

Re: OpenBSD security could be tightened up easily

On Tuesday 07 February 2006 13:16, Ted Unangst wrote: > On 2/5/06, Dave Feustel <[EMAIL PROTECTED]> wrote: > > Also, all x11 and kde sockets are created with permissions up to and > > including 777 that can be restricted with no loss of functionality. I now > > and how are other users going to con

Re: OpenBSD security could be tightened up easily

On 2/5/06, Dave Feustel <[EMAIL PROTECTED]> wrote: > Also, all x11 and kde sockets are created with permissions up to and > including 777 that can be restricted with no loss of functionality. I now and how are other users going to connect to the socket then?