Subject: Re: /usr/games question
To: None <netbsd-users@netbsd.org>
From: Christian Biere <christianbiere@gmx.de>
List: netbsd-users
Date: 12/26/2006 16:31:08
Isaac Wagner-Muns wrote:
> can the games in /usr/games be used to compromise a system? they are
> setuid, so i'm a little worried, and it never hurts to be paranoid! :)
It's unlikely but if you don't use them, just remove them. Also for systems on
which you are root and have few or no other users, you can strip the
setuid/setgid for a couple of programs because you either never use them or you
can do this as root yourself (for example changing an account password).
--
Christian