Date: Thu, 22 Nov 2001 11:07:16 +0100 From: "Anthony Atkielski" <anthony@freebie.atkielski.com> To: "Peter Pentchev" <roam@ringlet.net> Cc: "FreeBSD Questions" <freebsd-questions@FreeBSD.ORG>, <freebsd-security@FreeBSD.ORG> Subject: Re: setuid on nethack? Message-ID: <016601c1733d$7a516b00$0a00000a@atkielski.com> References: <014201c17336$40653f90$0a00000a@atkielski.com> <20011122112415.B855@straylight.oblivion.bg> <016001c17338$37d65240$0a00000a@atkielski.com> <20011122114813.C855@straylight.oblivion.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
What about in the more general case of games? Would it be a good idea to set game files to games:games and 6511? And what about other types of executables? When I add ports and stuff to my system, sometimes they are picked up from some bizarre FTP sites, and in cases where the executables do not have to be trusted, some guidelines on how better to secure them would be welcome. I know that often they are being rebuilt from source before installation, but it isn't really practical to read through the source for every port just to look for suspicious code. Are ports examined by anyone anywhere for security problems before being included in the FreeBSD list of ports? ----- Original Message ----- From: "Peter Pentchev" <roam@ringlet.net> To: "Anthony Atkielski" <anthony@freebie.atkielski.com> Cc: "FreeBSD Questions" <freebsd-questions@FreeBSD.ORG>; <freebsd-security@FreeBSD.ORG> Sent: Thursday, November 22, 2001 10:48 Subject: Re: setuid on nethack? > On Thu, Nov 22, 2001 at 10:29:36AM +0100, Anthony Atkielski wrote: > > After seeing that the owner and group were games, I set the permissions back to > > 2511, which I assume is safe. > > > > Do I need to take special precautions if I play this game from root? Would 6511 > > be a better choice in that case? > > No, no special precautions should be necessary. AFAIK, nethack does > not read any executable code from its data files, so any trojan would > have to be placed in the nethack executable itself. I personally have > never heard of somebody trojaning the nethack game so far :) > > G'luck, > Peter > > -- > You have, of course, just begun reading the sentence that you have just finished reading. > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?016601c1733d$7a516b00$0a00000a>