Re: jserver socket permissions

[Paul Gampe <paulg@example.com>]

On Mon, 13 Jan 1997, Craig Oda wrote:

craig>Jserver then automatically creates a socket in /tmp.
craig>
craig>srwxr-xr-x   1 root     root            0 Jan 13 22:32 jd_sockV4=
craig>
craig>As can be seen from the permissions above, only root can write
craig>to the socket.  I can solve this by changing the permissions
craig>to 1777.  However, I was wondering if this was a security problem
craig>or not.  I guess I can simply add the lines

Yes it could be a security problem, depending on what the uid of the
jserver process is.

craig>if [ -f /tmp/jd_sockV4 ]; then
craig>	chmod 1777 /tmp/jd_sockV4
craig>fi
craig>
craig>to the  rc.local file...  Any ideas?
craig>
craig>I'm planning If the permissions are automatically set to 1755, it
craig>must be a problem for other people too, right?

What port are you running the jserver on ?.  Is it running as root or as a
specific uid ?.  

Paul

--------------------------------------------------------------------------
mailto:paulg@example.com     phoneto:81-3-3351-5977     faxto:81-3-3353-6096
The students learn that effective action arises out of silence and a clear
sense of being.  In this they find a source of peace.  They  discover that
the person who is down-to-earth can do what needs doing  more  effectively
than the person who is merely busy.  - Lao Tzu's    "Tao Te Ching"   500BC
--------------------------------------------------------------------------


-----------------------------------------------------------------
a word from the sponsor will appear below
-----------------------------------------------------------------
The TLUG mailing list is proudly sponsored by TWICS - Japan's First
Public-Access Internet System.  Now offering 20,000 yen/year flat
rate Internet access with no time charges.  Full line of corporate
Internet and intranet products are available.   info@example.com
Tel: 03-3351-5977   Fax: 03-3353-6096