On Thu, Oct 10, 2002 at 12:42:29PM +0000, Socketd wrote: > > write or modification access through access lists. But that's > > something we ought to reconsider when ACLs are widely available on > > FreeBSD, imho.
> I am not the biggest fan of ACL's and I think we can solve this problem > with the tools we have now. We have /var and different daemons and the > kernel have to write messages to different files in that "dir". The > interface to /var/ should be syslogd, meaning that all files in that > "dir" should be owned by syslog. I can't see the need for ACL to make > syslogd a non-root daemon. What about running syslogd with '-ss' commandline options? IMHO it's a bit secure than default variant. -- Best regards, Roman To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
