Date: Tue, 16 May 1995 16:33:04 +1000 From: Bruce Evans <bde@zeta.org.au> To: pst@Shockwave.COM, wpaul@skynet.ctr.columbia.edu Cc: freebsd-bugs@FreeBSD.org Subject: Re: misc/423: security of sound devices Message-ID: <199505160633.QAA24269@godzilla.zeta.org.au>
next in thread | raw e-mail | index | archive | help
>[console user should own the audio devices] >The only bug here is (I think) a lack of documentation. /usr/bin/login >already has support for /etc/fbtab and /etc/logindevperm (whichever >name you please) that let you define permissions and ownerships for >frame buffer and sound devices that take effect when a user logs in >on the console. /etc/fbtab is the file used in SunOS 4.1.x. Solaris 2.x >uses /etc/logindevperm. We have /usr/src/etc/fbtab but it doesn't have enough devices, all devices are commented out, and it doesn't get installed. >If you look at /usr/src/usr.bin/login/login_fbtab.c you'll see the >comments that describe what's supposed to happen. Those comments >should probably be made into a man page, and a default /etc/fbtab We have fbtab.5 and it even gets installed :-). >file should probably be added to the distribution so people will >have some idea that this feature exists. The distribution should be as secure as possible by default. What goes wrong if /etc/fbtab is too restrictive? What is the equivalent of `mesg y'? Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199505160633.QAA24269>