[10811] in bugtraq
Re: RedHat 6.0, /dev/pts permissions bug when using xterm
daemon@ATHENA.MIT.EDU (Scott Wunsch)
Sat Jun 12 17:20:46 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19990611112941.A3686@penguin.wunsch.org>
Date: Fri, 11 Jun 1999 11:29:42 -0600
Reply-To: Scott Wunsch <scott@WUNSCH.ORG>
From: Scott Wunsch <scott@WUNSCH.ORG>
To: BUGTRAQ@NETSPACE.ORG
> This is not sufficient when using rxvt and apparently several other
> xterm-a-likes. By default rxvt overides the gid with the user's gid
> and changes the permissions to 622, even if the permissions specified
> in fstab are more restrictive than 622. The solution with rxvt is to
> pass --enable-ttygid to the configure script.
I've been playing with this, and --enable-ttygid isn't enough either. It looks
like rxvt has to bee suid root in order to set the gid on the tty. Mortals
can't do it:
[scott@pytheas] ~$ chgrp tty /dev/pts/1
chgrp: you are not a member of group `tty': Operation not permitted
So which one is the bigger security risk? Suid root xterms or world-writable
pseudottys?
--
Take care,
Scott \\'unsch