blob: c885c82292081b10bab1f9b1b0c1d4dd38ff1615 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
Patch for Debian bug #197080
Don't use the 'games' group as an example in group.conf, this is a
potential security hole.
Authors: Peter Cordes <peter@llama.nslug.ns.ca>
Upstream status: committed to CVS
Index: Linux-PAM/modules/pam_group/group.conf
===================================================================
--- Linux-PAM/modules/pam_group/group.conf.orig
+++ Linux-PAM/modules/pam_group/group.conf
@@ -88,10 +88,11 @@
#
# another example: running 'xsh' on tty* (any ttyXXX device),
# the user 'sword' is given access to games (through membership of
-# the floppy group) after work hours
+# the sound and play group) after work hours. (The games group owns
+# high-score files and so on, so don't ever give users access to it.)
#
-#xsh; tty* ;sword;!Wk0900-1800;games, sound
+#xsh; tty* ;sword;!Wk0900-1800;sound, play
#xsh; tty* ;*;Al0900-1800;floppy
#
|
