Path: utzoo!attcan!uunet!tut.cis.ohio-state.edu!zaphod.mps.ohio-state.edu!uwm.edu!rutgers!att!dptg!ulysses!andante!alice!debra
From: debra@alice.UUCP (Paul De Bra)
Newsgroups: comp.unix.wizards
Subject: Re: Problems with permissions on sockets.
Message-ID: <11095@alice.UUCP>
Date: 26 Jul 90 21:37:03 GMT
References: <1990Jul26.102810.4816@hod.uit.no>
Reply-To: debra@alice.UUCP ()
Organization: AT&T, Bell Labs
Lines: 18

In article <1990Jul26.102810.4816@hod.uit.no> arneme@sfd.uit.no writes:
>Last night something weird happend on one of our Unix machines (a Sun
>3/60 running SunOs 4.0.3) :
>
>The permissons on the device files /dev/kmem and /dev/mem was changed
>from 644 to 640. This resulted in that users running programs opening
>and reading either kmem or mem complained about it not working...

/dev/kmem and /dev/mem should never have been 644 in the first place.
Allowing any process to read kernel memory means that one can get a
process to peek at tty input buffers and things like that. (so any time
anyone types his password, whoops...)

Paul.
-- 
------------------------------------------------------
|debra@research.att.com   | uunet!research!debra     |
------------------------------------------------------