Path: utzoo!attcan!uunet!husc6!bloom-beacon!tut.cis.ohio-state.edu!osu-cis!killer!pollux!dalsqnt!rpp386!jfh
From: jfh@rpp386.Dallas.TX.US (John F. Haugh II)
Newsgroups: comp.unix.wizards
Subject: Re:  What reason should /dev/kmem not be world-readable?
Message-ID: <8532@rpp386.Dallas.TX.US>
Date: 9 Nov 88 14:42:06 GMT
References: <17448@adm.BRL.MIL>
Reply-To: jfh@rpp386.Dallas.TX.US (John F. Haugh II)
Organization: River Parishes Programming, Dallas TX
Lines: 16

In some long lost article, someone wrote:
>->In fact, when Mark Kampe came to the site to install some goodies
>->we  used  this marvelous program to watch his terminal session on
>->other tubes.  It was better than a script program.

This can be very dangerous.  Letting one of those run on a terminal
root or some other privileged user is likely to use could have nasty
results.

/dev/kmem should never be readable by regular users.  ps and other
kernel pokers should run S(U|G)ID the owner of the device.
-- 
John F. Haugh II                        +----Make believe quote of the week----
VoiceNet: (214) 250-3311   Data: -6272  | Nancy Reagan on Artifical Trish:
InterNet: jfh@rpp386.Dallas.TX.US       |      "Just say `No, Honey'"
UucpNet : <backbone>!killer!rpp386!jfh  +--------------------------------------