Re: [TCLUG:12802] Security on /dev

To: tclug-list@mn-linux.org
Subject: Re: [TCLUG:12802] Security on /dev
From: Jon Schewe <schewe@tcfreenet.org>
Date: 24 Jan 2000 15:45:46 -0600
In-Reply-To: Smith Jeremy's message of "Mon, 24 Jan 2000 13:04:31 -0600"
References: <C557DE5CA7A5D211A3040004AC4C4A3FD6974B@iamspems01.interprise.com>
Sender: jschewe@mn65-eggplant.htc.honeywell.com
User-Agent: Gnus/5.0803 (Gnus v5.8.3) XEmacs/21.1 (Biscayne)

Smith Jeremy <jrsmit2@uswest.com> writes:

> Does anyone know of any kind of documentation on what permissions on Linux
> devices should be?
> 
> I find myself needing to enable write access to various system devices in
> order to allow users to use applications (for instance adding write access
> to /dev/mixer in order to change the volume, or read access to /dev/hdc in
> order to use a CDROM player) but I'm somewhat uncomfortable with doing so
> for security purposes.  I can imagine that exploits can exist which use
> improperly configured devices, but on the other hand I want people to have
> that X, sound, and the ability to mount and unmount removable media.
> 
One thing to note if you're changing permissions in /dev.  /dev/zero MUST
be world writable otherwise things just won't run.

---
Jon Schewe
jpschewe@eggplant.mtu.net
http://eggplant.mtu.net/~jpschewe

References:
- Security on /dev
  - From: Smith Jeremy <jrsmit2@uswest.com>

Prev by Date: RE: [TCLUG:12807] bad day (more details)
Next by Date: Re: [TCLUG:12831] Issues raised today
Prev by thread: Re: [TCLUG:12802] Security on /dev
Next by thread: bad day (more details)
Index(es):
- Date
- Thread