Commit Graph

8 Commits

Author SHA1 Message Date
jsm 5367f3400c Security improvements for games (largely from or inspired by OpenBSD).
Games which run setgid from dm, but don't need to, should drop their
privileges at startup.

Games which have a scorefile should open it at startup, then drop all
privileges leaving just the open writable file descriptor.  If the
game can invoke subprocesses, this should be made close-on-exec.

Games with scorefiles should make sure they do not get a file
descriptor < 3.  (Otherwise, they could get confused and corrupt the
scorefile when using stdin, stdout or stderr.)

Some old setuid revokes from the days of setuid games change into gid
revokes.
1999-09-12 09:02:20 +00:00
hubertf 6d265b3268 constify, per PR 6148 1998-11-10 13:01:31 +00:00
lukem 2736b51163 WARNSify (not an insignificant task...) 1997-10-12 11:45:01 +00:00
cgd 7ee35daafd clean up import, NetBSD RCS Ids 1995-04-22 10:27:22 +00:00
cgd 02357d57aa new curses update 1993-11-10 10:02:16 +00:00
mycroft e6923339bf Use `r+' rather than `a+' when opening score file. 1993-09-23 22:28:42 +00:00
mycroft 8542364e07 Add RCS identifiers. 1993-08-01 18:49:50 +00:00
cgd 61f282557f initial import of 386bsd-0.1 sources 1993-03-21 09:45:37 +00:00