Subject: changing default user from bin:bin to root:wheel
To: None <tech-security@NetBSD.ORG>
From: Luke Mewburn <email@example.com>
Date: 02/19/1998 11:43:49
it's been discussed in various places before that the default
installation user:group of `bin:bin' is not the best solution:
* security holes do exist that "get any user but root access"
i propose that the default is changed (in /usr/share/mk/bsd.own.mk)
to root:wheel. this also results in:
* default NFS mapping of client root -> uid -2 means that
unpriviliged client workstations can't modify root-owned
comments / problems with this?