From nobody Thu Feb 09 01:44:06 2023 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4PC05h0twVz3ngdC for ; Thu, 9 Feb 2023 01:44:08 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 4PC05g4yHsz4PPm for ; Thu, 9 Feb 2023 01:44:07 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Authentication-Results: mx1.freebsd.org; dkim=none; spf=none (mx1.freebsd.org: domain of galtsev@kicp.uchicago.edu has no SPF policy when checking 128.135.20.70) smtp.mailfrom=galtsev@kicp.uchicago.edu; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=uchicago.edu (policy=none) Received: from [192.168.12.191] (unknown [172.56.249.7]) (Authenticated sender: galtsev) by kicp.uchicago.edu (Postfix) with ESMTPSA id 456294E44A for ; Wed, 8 Feb 2023 19:44:07 -0600 (CST) Message-ID: <62910b27-6ed5-0ed4-50be-7bc78a079ac3@kicp.uchicago.edu> Date: Wed, 8 Feb 2023 20:44:06 -0500 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.6.1 Subject: Re: Running Apps As Root Considered Unwise [re: # amule, distributed apps] Content-Language: en-US To: questions@freebsd.org References: <5f35ad74-e690-3d99-249f-1b3615c083b8@kicp.uchicago.edu> From: Valeri Galtsev In-Reply-To: <5f35ad74-e690-3d99-249f-1b3615c083b8@kicp.uchicago.edu> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Spamd-Result: default: False [-3.07 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.97)[-0.971]; RCVD_IN_DNSWL_MED(-0.20)[128.135.20.70:from]; RCVD_NO_TLS_LAST(0.10)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_POLICY_SOFTFAIL(0.10)[uchicago.edu : No valid SPF, No valid DKIM,none]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:160, ipnet:128.135.0.0/16, country:US]; TO_MATCH_ENVRCPT_ALL(0.00)[]; ARC_NA(0.00)[]; MLMMJ_DEST(0.00)[questions@freebsd.org]; TO_DN_NONE(0.00)[]; R_SPF_NA(0.00)[no SPF record]; RCPT_COUNT_ONE(0.00)[1]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[] X-Rspamd-Queue-Id: 4PC05g4yHsz4PPm X-Spamd-Bar: --- X-ThisMailContainsUnwantedMimeParts: N On 2/8/23 8:41 PM, Valeri Galtsev wrote: > > > On 2/8/23 6:44 PM, grarpamp wrote: >> On 2/8/23, Luciano Mannucci wrote: >>> root@marietto:/usr/home/marietto # amule >> >> Users should probably not be running random applications >> that they downloaded from the untrustable internet as root. > My apologies, I 100% agree with you, just managed to miss your mentioning "root". You are 100% right, and my comment below is irrelevant. Valeri > Wow, this sounds like an advise from MS world. In case of UNIX when user > was saying "I crashed the machine" I replied: you do not have admin/root > privileges. If something went wrong it is not your fault, but the fault > of the system, and my - sysadmin's - who didn't configure the system > secure enough, so regular user can not do damage to the system or work > of other users on the machine. > > Just my 2 cents. > > Valeri > >> Far too many exploits/bugs have happened that way around world. >> Use a VM or disposable, or remap IP ports, an unpriviledged user, etc. >> >> If people want to explore or make more ports, FreeBSD will compile >> and run many of the newer distributed sharing/filestorage/chat/crypto >> apps beyond amule too. Have fun :) >> >> >> >> >> >> -- >> https://www.youtube.com/watch?v=xWAwK2fHArc >> https://duckduckgo.com/?ia=videos&iax=videos&q=voluntaryism >> https://odysee.com/@Anarchast:2 >> https://bitchute.com/  ||  https://rumble.com/ >> https://twitter.com/NameRedacted247