Date: Sun, 6 Sep 1998 00:53:24 +0200
From: Michal Zalewski <lcamtuf@IDS.PL>
To: BUGTRAQ@netspace.org
Subject: Sendmail, lynx, Netscape, sshd, Linux kernel (twice)

More kernel 'things' - tty allocation
-------------------------------------

Hmm, I've posted it months ago, and I have no idea why it hasn't been
approved. Hmm, the problem: run 'mc' and enter: "ls -l `tty`". Not
much to say. Default Linux semantics won't allow non-suid programs to
allocate tty properly (it could be allocated, but in world-writable and
world-readable mode). Two solutions:

1. Give +s to Midnight Commander and other programs ;>
2. Remove +s from screen, xterm, rxvt, mc ;> and use this module instead:
   http://dione.ids.pl/~lcamtuf/pliki/ttyperm.c (*Solution*)

It changes Linux semantics on tty allocation to make it SYSV-alike. From
now, you could even use non-suid screen - export SCREENDIR=~/screens in
login scripts should be sufficient.

_______________________________________________________________________
Michal Zalewski [lcamtuf@ids.pl] [ENSI / marchew] [dione.ids.pl SYSADM]
[http://linux.lepszy.od.kobiety.pl/~lcamtuf/] <=--=> bash$ :(){ :|:&};:
[voice phone: +48 (0) 22 813 25 86] ? [pager (MetroBip): 0 642 222 813]
Iterowac jest rzecza ludzka, wykonywac rekursywnie - boska [P. Deutsch]