I have now posted a bug report on this issue.
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277228
On 2024-02-24, Miroslav Lachman <000.f...@quip.cz> wrote:
> On 24/02/2024 21:00, Vincent Stemen wrote:
>> On Sat, Feb 24, 2024 at 04:40:00PM +0100, Miroslav Lachman wrote:
>>> I agree with this security problem. Just a small note - there are
>>> backups of partitions (/var/backups/gpart.*) created
On 24/02/2024 21:00, Vincent Stemen wrote:
On Sat, Feb 24, 2024 at 04:40:00PM +0100, Miroslav Lachman wrote:
I agree with this security problem. Just a small note - there are
backups of partitions (/var/backups/gpart.*) created by periodic script
/etc/periodic/daily/221.backup-gpart (if you have
On Sat, Feb 24, 2024 at 04:40:00PM +0100, Miroslav Lachman wrote:
> I agree with this security problem. Just a small note - there are
> backups of partitions (/var/backups/gpart.*) created by periodic script
> /etc/periodic/daily/221.backup-gpart (if you have
> daily_backup_gpart_enable="YES" in
I agree that this doesn't make much sense. Read only access should not imply
any kind of writing functionality.
What would it take to change this? I'm not familiar enough to say.
Thanks for posting, Vincent!
-Henrich
Feb 22, 2024, 21:23 by vince@hightek.org:
> On Thu, Feb 22, 2024 at 01:1
On Thu, Feb 22, 2024 at 01:12:23PM -, Peter 'PMc' Much wrote:
> On 2024-02-17, Vincent Stemen wrote:
> >
> > I have been a Unix systems administrator for well over 35 years and It's not
> > uncommon for administrators to belong to the operator group for restricted
> > admin tasks. It is compl
Hi.
In the process of writing some systems administration tools on FreeBSD
13.1-RELEASE to custom partition drives and setup computers for our network
and our customers, I have discovered that any user belonging to the
'operator' group has the power to completely delete the partition table and
wip
