Default permissions for /dev/log

To: debian-security@lists.debian.org
Subject: Default permissions for /dev/log
From: "Nikita V. Youshchenko" <yoush@cs.msu.su>
Date: Sat, 20 Sep 2003 20:33:29 +0400
Message-id: <[🔎] 2672413.BfMaPlCMQ2@sercond.dubki.ru>

Hello.

I've just found that on all my systems /dev/log has rw-rw-rw- permissions.
Is that Debian default?
If yes, any local user may bloat system logs by writing a simple program
like
#include <syslog.h>
int main()
{
         while (1)
                syslog(LOG_INFO, "TIME TO KILL /var FILESYSTEM");
}

Reply to:

Follow-Ups:
- Re: Default permissions for /dev/log
  - From: "Noah L. Meyerhans" <noahm@debian.org>

Prev by Date: Re: Default permissions for /dev/log
Next by Date: Will Bind9 in stable get patched?
Previous by thread: Re: Watch out! vsftpd anonymous access always enabled!
Next by thread: Re: Default permissions for /dev/log
Index(es):
- Date
- Thread