Re: cons.saver exploit and /dev/vcsa* owner
[ Robert Luberda writes ]
> On Tue, 14 Nov 2000, Petr Cech wrote:
> > Oh no. Please NOT. I've seen this happen on a RH box. It really messes with
> > permissions
> >
>
> Yes, I know. They did strange things with permissions of devices like
> fd*, cdrom, audio in their pam_console.
Solaris does a similar this too.
In fact, Solaris has a nice CONFIG FILE to deal with this sort of thing:
/etc/logindevperm
which has a list of /dev/xxx names to chown, and the appropriate umask to
set, if someone is logged in on console.
I think that's a good idea.
Reply to: