search for: bsdlists

...10 minutes and install the port. Then again some people have brought to the table the security flaws found in sudo. What makes it so hard that you cannot install sudo from ports? I will even make you a quick shell script that will do it for you. - -----Original Message----- From: asym [mailto:bsdlists@rfnj.org] Sent: Thursday, July 21, 2005 12:45 PM To: Stephen Major; freebsd-security@freebsd.org Subject: Re: FW: FW: FW: Adding OpenBSD sudo to the FreeBSD base system? At 15:15 7/21/2005, Stephen Major wrote: >-----BEGIN PGP SIGNED MESSAGE----- >Hash: SHA512 > >http://www.freshports...

Hello, I have a RAID-6 Partition with the Areca ARC-1231 card on a S5000PAL Intel system with 6 disks as part of the raid volume. The system has been set up as Write-back cache and the raid card has a 2 GIG memory cache on it. It is installed on Freebsd 7.0 STABLE with SCHED_ULE enabled. I have a folder with a lot of small and big files in it that total 3009 files. In the user system we

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I have grabbed some quotes from various discussions on this topic these are other peoples opinions! ">Regarding su vs. direct login, you should use su, it doesn't give > you much, but it does give you knowledge of who logged in as root > and when (provided that he did not edit the logs :-) Yes, it gives you a huge advantage,

Hello, what is the right way to disable XFree86 and wdm listening ports tcp 6000 and tcp 1024. I read in man XFree86 about the -nolisten tcp option and tried to set in /usr/X11R6/lib/X11/xdm :0 local /usr/X11R6/bin/X -nolisten tcp but it was not successful. What is the right way to close the ports without use of IPFW? Your help would be appreciated. Thank?s Wolfgang

Aloha! (I've Googled around a bit, but failed to find much previous posts about this though I'm sure it has been discussed...) Have anybody (in core etc) considered adding a sudo implementation to thr FreeBSD base system. At least for me, sudo is an important part of implementing good security policy in FreeBSD. Yes, it is available as a port, but in a similar fashion of for example,

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I really do not agree with adding it to the base system. Just because you guys use sudo does not mean other people do. In fact many people do not have a use for sudo at all. Not every one gives out root accounts. You are only adding another utility In that can possibly be used to escalate privileges. Every time I secure a system I spend some time