[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: devfsd permissions and makedev permissions coordination

On Sep 11, Daniel Jacobowitz <dan@debian.org> wrote:

 >>  >> This is obviously wrong, ttys must have 620 permissions (or 600 if you
 >>  >> don't want people talk(1)ing to you, but I think the default should be
 >>  >> to allow it).
 >>  >For ttys "owned" by a shell that's true, but it's set up by login(1), not
 >>  >MAKEDEV (or devfsd). For other ttys (vcs, not serial etc.), the current
 >> If you use open(1) you get 666 ttys. This is a problem IMO.
 >Sounds to me like a bug in open(1) then, no?  Does it at least chown()
 >them to the user opening them?
Yes, because this is what it's expected to do.
But I see no good reason for devfsd to create devices with insecure


To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: