Re: MOAB advisories

Quoting Bill Moran <wmoran@xxxxxxxxxxxxxxxxxxxxxxx> (Sun, 14 Jan 2007 11:06:36 -0500):

Alexander Leidinger <Alexander@xxxxxxxxxxxxx> wrote:

Quoting Bill Moran <wmoran@xxxxxxxxxxxxxxxxxxxxxxx> (Sun, 14 Jan 2007 10:15:15 -0500):

"Kobajashi Zaghi" <kobajashi@xxxxxxxxx> wrote:

I would like to know, that these following "vulnerabilities" does
affect FreeBSD's reliability? If the answer is "yes", what version of
FreeBSD affected, when will be fixed, etc.

http://projects.info-pull.com/moab/MOAB-12-01-2007.html
http://projects.info-pull.com/moab/MOAB-10-01-2007.html

These folks are establishing themselves as careless, alarmist, and
uneducated when it comes to kernel bugs.

In FreeBSD, the above mentioned flaws can, indeed, cause a kernel panic.
However, this is intended behaviour when a corrupt filesystem is
encountered. It protects the system from serious damage that could
result from trying to work with the corrupt filesystem.

The difference, that the info-pull folks seem to be too stupid to
understand, is that FreeBSD does not allow mounting of filesystems
by anyone other than root.

Except root did set the sysctl to allow this, or started a HAL daemon
which mounts stuff for the desktop user, or uses amd to mount stuff.

All decisions made by root.

Yes. I just wanted to point out that it only is a non-issue when root
didn't made specific configuration operations. Those configs are ok, as
long as you know about the consequences. We do not have warnings about
this in all places where we should have them.

Bye,
Alexander.

--
Ohh, my son doesn't stand a chance! The whole world has gone gay!

-- Homer Simpson
Homer's Phobia
http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7
http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: MOAB advisories
    ... In FreeBSD, the above mentioned flaws can, indeed, cause a kernel panic. ... this is intended behaviour when a corrupt filesystem is ... Except root did set the sysctl to allow this, ... which mounts stuff for the desktop user, or uses amd to mount stuff. ...
    (FreeBSD-Security)
  • Re: HOW TO: Enabling root on a new server?
    ... Amusing to hear they are more secure on FreeBSD than linux although its ... this should let you upload a shell script which is then run as root ... (horribly insecure but thats plesk, and if you fiddle with their setting ...
    (freebsd-stable)
  • file system setup for new system - recommendations?
    ... and I ask for your collective help. ... I successfully built a FreeBSD system using defaults. ... I've tried to absorb input from the FreeBSD on-line handbook, ... A Reference says keep the root section small, ...
    (freebsd-questions)
  • Re: [OT] Sony CDs are not safe to play in a Windows computer
    ... >>I run a BSD Unix varient myself called FreeBSD. ... >>this is that if you don't run as root, then it cannot install itself at ... FreeBSD and other Unix varients don't have ... strip view finger mount fcsk more fcsk yes spray umount sleep ...
    (rec.arts.anime.misc)
  • AW: FreeBSD 2.2.9 / Installation problem
    ... I tried to send to freebsd-questions the following twice, ... Betreff: Re: FreeBSD 2.2.9 / Installation problem ... root correctly. ... system where I want to run it, the HP Omnibook, it is ad0. ...
    (freebsd-questions)