Re: x11 games section

To: adrian.bridgett@poboxes.com
Cc: Debian Developers List <debian-devel@lists.debian.org>
Subject: Re: x11 games section
From: Joey Hess <joey@kite.ml.org>
Date: Tue, 14 Oct 1997 21:54:07 -0400
Message-id: <[🔎] 19971014215407.20961@kite>
In-reply-to: <[🔎] 19971014175826.10998@wyvern>; from Adrian Bridgett on Tue, Oct 14, 1997 at 05:58:26PM +0000
References: <[🔎] 19971012191317.25267@wyvern> <[🔎] Pine.LNX.3.96.971014112823.19495D-100000@noah.dfis.ull.es> <[🔎] 19971014175826.10998@wyvern>

Adrian Bridgett wrote:
> Can somebody now why it _seems_ to be recommended to do this:
> 
> rwxr-sr-x root games  filename
> rw-rw-r-- root games  scores
> 
> i.e what happens when it is run by:
> a) root
> b) someone in the games group
> c) someone not in the games group

In all cases, the game runs sgid to group games, which means that it can
write to "scores".

According to policy section 4.8, paragraph 3:

     Games which require protected, privileged access to high-score files,
     savegames, etc., must be made set-*group*-id (mode 2755) and owned by
     `root.games', and use files and directories with appropriate
     permissions (770 `root.games', for example). They must *not* be made
     set-*user*-id, as this causes security problems. 

-- 
see shy jo, who loves quoting policy


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- x11 games section
  - From: Adrian Bridgett <adrian.bridgett@poboxes.com>
- Re: x11 games section
  - From: Enrique Zanardi <ezanardi@noah.dfis.ull.es>
- Re: x11 games section
  - From: Adrian Bridgett <adrian.bridgett@poboxes.com>

Prev by Date: Re: prepackaged Debian GNU/Linux
Next by Date: Re: prepackaged Debian GNU/Linux
Previous by thread: Re: x11 games section
Next by thread: copyright questions
Index(es):
- Date
- Thread