Re: exploring debian's users and groups

To: debian-devel@lists.debian.org
Subject: Re: exploring debian's users and groups
From: David Schleef <ds@schleef.org>
Date: Tue, 7 Aug 2001 18:27:11 -0700
Message-id: <[🔎] 20010807182711.A19423@stm.lbl.gov>
Reply-to: David Schleef <ds@schleef.org>
In-reply-to: <[🔎] 20010807133138.I21371@kitenet.net>; from joeyh@debian.org on Tue, Aug 07, 2001 at 01:31:38PM -0400
References: <[🔎] 20010807142217.A15226@wiggy.net> <[🔎] 20010807133138.I21371@kitenet.net>

On Tue, Aug 07, 2001 at 01:31:38PM -0400, Joey Hess wrote:
> 
> bin:
> 	HELP: No files on my system are owned by user or group bin. What
> 	      good are they? Historically they were probably the owners of
> 	      binaries in /bin? It is not mentioned in the FHS, debian
> 	      policy, or the changelogs of base-passwd or base-files.

Historically, bin was the owner of executables on the system.  The
reason for this may be lost in the mists of time.  However, when
people started sharing executables over NFS, it became a serious
security hole, which was "fixed" by using root_squash and making
the executables owned by root.

I think the conclusion these days is that if you export an NFS
partition read/write over an untrusted network, you get the
security that you deserve.

> sys:
> 	HELP: As with bin, except I don't even know what it was good for
> 	      historically.

I _think_ the same is true for sys, but for non-executable files.

dave...

Reply to:

References:
- Re: exploring debian's users and groups
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: exploring debian's users and groups
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Debbugs: The Next Generation
Next by Date: Re: Debbugs: The Next Generation
Previous by thread: Re: exploring debian's users and groups
Next by thread: Re: exploring debian's users and groups
Index(es):
- Date
- Thread