Re: cons.saver exploit and /dev/vcsa* owner

To: debian-devel@lists.debian.org
Subject: Re: cons.saver exploit and /dev/vcsa* owner
From: phil@bolthole.com (Philip Brown)
Date: Tue, 14 Nov 2000 13:23:09 -0800 (PST)
Message-id: <[🔎] 200011142123.NAA18207@shell3.ba.best.com>
Reply-to: phil@bolthole.com
In-reply-to: <[🔎] 20001114214646.D19330@pingu.ii.uj.edu.pl> from Robert Luberda at "Nov 14, 0 09:46:46 pm"

[ Robert Luberda writes ]
> On Tue, 14 Nov 2000, Petr Cech wrote:
> > Oh no. Please NOT. I've seen this happen on a RH box. It really messes with
> > permissions
> > 
> 
> Yes, I know. They did strange things with permissions of devices like
> fd*, cdrom, audio in their pam_console. 

Solaris does a similar this too.
In fact, Solaris has a nice CONFIG FILE to deal with this sort of thing:

/etc/logindevperm

which has a list of /dev/xxx names to chown, and the appropriate umask to
set, if someone is logged in on console.

I think that's a good idea.

Reply to:

Follow-Ups:
- Re: cons.saver exploit and /dev/vcsa* owner
  - From: Ethan Benson <erbenson@alaska.net>

References:
- Re: cons.saver exploit and /dev/vcsa* owner
  - From: Robert Luberda <robert@pingu.ii.uj.edu.pl>

Prev by Date: Re: [gaia@iki.fi: Bug#77042: RFA: Bluefish -- a HTML editor]
Next by Date: ITP: libsdl1.1-net, prboom -- another doom descendant
Previous by thread: Re: cons.saver exploit and /dev/vcsa* owner
Next by thread: Re: cons.saver exploit and /dev/vcsa* owner
Index(es):
- Date
- Thread