[90] in linux-security and linux-alert archive
Re: SvgaLib (was Re: Secure setup for file transfert)
daemon@ATHENA.MIT.EDU (Mr Martin J Hargreaves)
Fri Mar 10 03:39:01 1995
Date: Fri, 10 Mar 1995 05:33:35 +0000 (GMT)
From: Mr Martin J Hargreaves <ch11mh@surrey.ac.uk>
To: linux-security@tarsier.cv.nrao.edu
Cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <199503092037.VAA17264@dutecai.et.tudelft.nl>
Reply-To: linux-security@tarsier.cv.nrao.edu
On Thu, 9 Mar 1995 R.E.Wolff@et.tudelft.nl wrote:
> >
> > Mr Martin J Hargreaves said:
> >
> > Well, is there any way to secure program ussing svgalib.
> > It seems that to access vga io port you need some priviledge wich is an
> > increase of security (not anybody should be able to turn you screen upside
> > down). But because of the lack of security level in Unix (root or not root),
> > all program for Vga have to be run as root (I always log as root but don't
> > do as I do) or to be setuid root wich is a potential risk. (see above)
> > Is there any other solution than setuid root thoses programs (like gs with
> > the vga console driver). Shouldn't a solution be search ?
I didn't say all that. Mind you it's kind of nice to be the first
person wrongly attributed on a mailing list....
Cheers,
M.
ObLinuxSecurity.
Would other people find it useful if someone posted the output of
checkers like COPS and TIGER for unmodifies Linux distributions. I think
they'd be quite interesting reading. My "locked down" box threw up quite
a bit of worrying stuff from a TIGER run - I may try it on my (more or
less) untweaked home system....
----------------------------------------------------------------
| Martin Hargreaves, ch11mh@surrey.ac.uk|
| Undergraduate Computational Chemist |
| WWW Server Admin http://www.chem.surrey.ac.uk|
----------------------------------------------------------------
