Gentoo Archives: gentoo-hardened

From:	Peter Simons <simons@××××.to>
To:	gentoo-hardened@l.g.o
Subject:	[gentoo-hardened] Re: PaX in linux-2.6.5-hardened-r5
Date:	Sun, 20 Jun 2004 09:17:37
Message-Id:	`87vfhmoafs.fsf@peti.cryp.to`
In Reply to:	[gentoo-hardened] Re: PaX in linux-2.6.5-hardened-r5 by Peter Simons

1	Peter Simons writes:
2
3	> But it get's better: When I do it as 'root', it works!
4
5	Just noticed that there are other setuid-issues when I run
6	the hardened kernel. screen(1), for instance, suddenly
7	requires me to set /var/run/screen to 1777, so that it can
8	create the socket in there. Even though it should not:
9
10	peti# ls -ld /usr/bin/screen /var/run/screen
11	-rwxr-s--x 1 root utmp 423K Jun 18 01:15 /usr/bin/screen
12	drwxrwx--- 4 root utmp 4.0K Jun 18 03:00 /var/run/screen
13
14	But:
15
16	peti:~$ screen
17	Directory '/var/run/screen' must have mode 777.
18
19	Weird.
20
21	Peter
22
23
24	--
25	gentoo-hardened@g.o mailing list