What reason should /dev/kmem not be world-readable?
Crispin Goswell
caag at inf.rl.ac.uk
Fri Dec 16 21:21:02 AEST 1988
In article <8532 at rpp386.Dallas.TX.US> jfh at rpp386.Dallas.TX.US (John F. Haugh II) writes:
>
>This can be very dangerous. Letting one of those run on a terminal
>root or some other privileged user is likely to use could have nasty
>results.
>
>/dev/kmem should never be readable by regular users. ps and other
>kernel pokers should run S(U|G)ID the owner of the device.
There is another reason: some machines have memory mapped devices, which
can be disturbed even by reading their device registers.
Thus system integrity can be affected, as well as security.
--
Name: Crispin Goswell |-------|__ Informatics Department
Usenet: {... | mcvax}!ukc!rlinf!caag | Tea | | Rutherford Appleton Lab
JANET: caag at uk.ac.rl.inf \ Mug /_/ Chilton, Didcot
ARPA: caag%inf.rl.ac.uk at nss.cs.ucl.ac.uk \_____/ Oxon OX11 0QX, UK
"The signatures flew everywhere and roosted in the trees." - Peter Blegvad
More information about the Comp.unix.wizards
mailing list