[Bug 231489] security/lockdown may result in unbootable system without user warning nor logging

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=231489

--- Comment #1 from J. B. <jbtakk at iherebuywisely.com> ---
security/lockdown, if  run without examining the port main binary,  [a shell
script] CLOSELY, alters key files,  notably ttys login.conf fstab sshd_config
... without backup, nor  warning, nor logging, nor asking first each step... 
leaving at best restore from backup, and  at an worst unrecoverable system, the
latter needing a [ new-install ] recovery medium and expertise, the former [
one has backup ] heavy expertise, and was crafted without mergemaster-alike
warnings and backups, nor a man page etc, AFAIK.  Also, its name invites PBKAC
actions, implying full vetting...

-- 
You are receiving this mail because:
You are the assignee for the bug.