On 2024-12-11 19:06:09 +0100, Jakub Wilk wrote: > * Chris Hofstaedtler <z...@debian.org>, 2024-11-14 20:57: > > As far as I can tell, the default for /dev/tty* is mode 0620, and the > > group owner being tty. No users should be part of that group.
Is this enforced for the next Debian release? On some bookworm machine, the group of the /dev/pts files is sometimes "users": joooj:~> ll /dev/pts total 0 crw------- 1 vinc17 tty 136, 0 2024-12-12 10:55:23 0 crw------- 1 vinc17 users 136, 1 2024-12-12 10:32:26 1 crw--w---- 1 vinc17 users 136, 2 2024-12-12 10:32:34 2 crw--w---- 1 vinc17 users 136, 3 2024-12-12 10:55:23 3 crw------- 1 vinc17 users 136, 4 2024-12-12 10:32:19 4 crw------- 1 vinc17 users 136, 8 2024-12-12 10:32:19 8 c--------- 1 root root 5, 2 2024-11-24 18:10:02 ptmx But on some other bookworm machine, the group is always "tty". > There's at least nwall, which is setgid tty: > > $ ls -l /usr/bin/nwall > -r-xr-sr-x 1 root tty 17988 Nov 14 21:30 /usr/bin/nwall > > > So no, you don't need to remove the +w part from the tty group. > > Yes, you do. So the current status is rather bad. -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
