Bug 52878

Summary:

[PATCH] security(7): small clarification on securing staff accounts

Product:

Documentation

Reporter:

Brian Minard <bminard>

Component:

Books & Articles

Assignee:

dannyboy <dannyboy>

Status:

Closed FIXED

Severity:

Affects Only Me

Priority:

Normal

Version:

Latest

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
file.diff	none
file.diff	none
file.diff	none

Description Brian Minard 2003-06-03 02:40:07 UTC

	This PR contains several patches for security(7).  

	  (1) corrects a typo

	  (2) replace hacker with cracker
	 
	  This patch moves the man page in line with the language used on
	  www.freebsd.org/security/security.html and the Security chapter of
	  the Handbook (which contains only one (incorrect) usage of hacker).

	  (3) provide clarification on an assumption about the safety of root,
	  given that an attacker has obtained the password file

	  This patch attempts to clarify earlier statements on the necessity
	  of securing root.  The unpatched paragraph says that you can secure
	  secure root idirectly by securing the staff accounts.  This still
	  requires that remote access to root be prohibited.  Misunderstanding
	  this point can be costly.

Comment 1 dannyboy freebsd_committer

2004-05-17 19:44:19 UTC

State Changed
From-To: open->closed

Comment 2 dannyboy freebsd_committer

2004-05-17 19:44:42 UTC

State Changed
From-To: closed->open

Arg, closed by mistake.

Comment 3 dannyboy freebsd_committer

2004-05-17 19:44:42 UTC

Responsible Changed
From-To: freebsd-doc->dannyboy

Working on this and a couple other security(7) tweaks.

Comment 4 dannyboy freebsd_committer

2004-05-18 18:51:51 UTC

State Changed
From-To: open->patched

1 is already in HEAD, and I just put 2 and 3 (using "attacker" in 2) 
in HEAD.  Thanks.

Comment 5 dannyboy freebsd_committer

2004-05-22 06:23:22 UTC

State Changed
From-To: patched->closed

I got this into RELENG_4.