Mailinglist Archive: opensuse-security (471 mails)
| < Previous | Next > |
Re: [suse-security] /dev permissions get changed
- From: Roman Drahtmueller <draht@xxxxxxx>
- Date: Wed, 25 Oct 2000 16:20:24 +0200 (MEST)
- Message-id: <Pine.LNX.4.21.0010251603180.29485-100000@xxxxxxxxxxxx>
Hi Martin,
>
> hi,
> on a couple of linux machines that are public workstations (i.e. a number of
> people have accounts and should be able to use the machines), i changed the
> permissions of /dev/cdrom to 0644 and /dev/fd0 to 0666 to enable the users
> to access the cdrom and floppy freely. the same (0666) was done for /dev/ttyS? -
> the users need access to the serial ports. a little while later, however, we
> had to discover that the permissions had been arbitrarily reset.
>
> /dev/fd0 went 0660 and got owned by the last user, group floppy.
> /dev/cdrom went 0600 <user>.disk
> /dev/ttyS0 went 0660 root.uucp
>
> ??? why does this happen? i noticed the /dev entries changing permissions and
> ownership whenever they felt like it. that's not how it's supposed to be. when
> i set fd0 to 0666 root.floppy, i intend it to stay like that until i change it.
> what is responsible for this change and how can i prevent it?
is it possible that the machine you're using is a redhat box or
similar?
This action looks like it's caused by a PAM module that isn't shipped with
SuSE linux (pam_console). We have found that it is useful but it also
brings along some problems (also security related) that aren't easy to
come by.
> thanks,
> martin
Thanks,
Roman.
--
- -
| Roman Drahtmüller <draht@xxxxxxx> // "Caution: Cape does |
SuSE GmbH - Security Phone: // not enable user to fly."
| Nürnberg, Germany +49-911-740530 // (Batman Costume warning label) |
- -
>
> hi,
> on a couple of linux machines that are public workstations (i.e. a number of
> people have accounts and should be able to use the machines), i changed the
> permissions of /dev/cdrom to 0644 and /dev/fd0 to 0666 to enable the users
> to access the cdrom and floppy freely. the same (0666) was done for /dev/ttyS? -
> the users need access to the serial ports. a little while later, however, we
> had to discover that the permissions had been arbitrarily reset.
>
> /dev/fd0 went 0660 and got owned by the last user, group floppy.
> /dev/cdrom went 0600 <user>.disk
> /dev/ttyS0 went 0660 root.uucp
>
> ??? why does this happen? i noticed the /dev entries changing permissions and
> ownership whenever they felt like it. that's not how it's supposed to be. when
> i set fd0 to 0666 root.floppy, i intend it to stay like that until i change it.
> what is responsible for this change and how can i prevent it?
is it possible that the machine you're using is a redhat box or
similar?
This action looks like it's caused by a PAM module that isn't shipped with
SuSE linux (pam_console). We have found that it is useful but it also
brings along some problems (also security related) that aren't easy to
come by.
> thanks,
> martin
Thanks,
Roman.
--
- -
| Roman Drahtmüller <draht@xxxxxxx> // "Caution: Cape does |
SuSE GmbH - Security Phone: // not enable user to fly."
| Nürnberg, Germany +49-911-740530 // (Batman Costume warning label) |
- -
| < Previous | Next > |