[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: user private groups and a src group

> Craig Sanders:
>   This sounds horrendously insecure. /usr/bin is owned by root.root, for
>   example, and you want to have it setgid???? !
> Hmm... I always change all stock [non-suid/sgid] binaries to bin.bin.
> Then, I can enforce that bin has access mode 0755.
> Under this scheme, /usr/bin/ would be owned by bin.bin -- seems like a
> wash.

This is how it Should Be, IMHO, regardless of how the setgid/group
thing works out.  bin.bin is much cleaner than root.wheel.

 /~> Ian McCloghrie      |       FLUG:  FurryMUCK Linux User's Group
< <  /~\ |~\ |~> |  | <~ | email: ian@ucsd.edu               Net/2, USL 0!
 \_> \_/ |_/ |~\ |__| _> | Card Carrying Member, UCSD Secret Islandia Club
GCS (!)d-(--) p c++ l++(+++) u+ e-(soon) m+ s+/+ n+(-) h- f+ !g w+ t+ r y*

Reply to: