* Stefan Sperling <[email protected]> [2010-09-23 12:49]: > > We already have knobs to control who can open tun(4) devices: they're > > called filesystem permissions. > It's just about having another barrier by default.
that's beyond ridiculous. > It boils down to whether we're paranoid enough to believe that someone > might be able to circumvent tun device file permissions without the admin's > consent, for whatever reason. ridiculous. if "someone" is able to "circumvent file system permisions without the admin's consent, for whatever reason" we have way bigger problems than tun. -- Henning Brauer, [email protected], [email protected] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting
