does anyone know why debian has /dev/fb* with 622 permissions?
the reason i ask is there is a pretty nasty security problem with
this, try the following:
cat /dev/urandom > /dev/fb0
on my system i get a instant kernel panic (2.2.17 from ftp.kernel.org).
since the framebuffer devices are world writable anyone with a shell
account can crash the system, not nice. (i have a blue G3 using
aty128fb)
what is broken by setting the permissions on all the framebuffer
devices to 0600 ?
--
Ethan Benson
http://www.alaska.net/~erbenson/
PGP signature
