Re: Sorry about where can I get this MUD.

From: Peter Ajamian (peter@pajamian.dhs.org)
Date: 02/17/00


Patrick Dughi wrote:
>         Who said I use a pay service?  We're allowed by our very nice
> admin to exist free of charge on a nice rarely-used server with a t1
> connection.  The server itself is part of a buisness which has no buisness
> whatsoever in either free hosting, or online games. Matter of fact, I
> think it's either a graphics or advertisement agency. We're there because
> the admin is a nice person. I make it a point to be as invisible as
> possible, and not trouble him for anything but the severely obvious; Uh,
> you chmodded the entire linux kernel source tree so only root can
> read/write/admin .... we need access to the header files in there to
> compile.

Hrmmm, an interesting idea might be to set up your own login and
restricted shell inside the shell you are given, a moderate amount of
perl scripting would probably be needed for this and you could assign
all your programers user names and maintain a database with encrypted
passwords, then they have to do a double-login, first they telnet (or
ssh) to the shell account and then the .bash_profile will launch a
secondary login/authentication with thier assigned username/passwd which
then gives them access to a restricted shell that you control, you can
maintain filelists for each programmer to only allow them access to
ceartain files, and do a host of other things to limit them
appropriately (use your imagination).  You set it up so that you and
your most trusted programmers will have access to the full shell also.

Another possibility would be to set it up to allow a limited amount of
programming from within the MUD itself, you could use a modified form of
the tedit and file (patch/snippet?) along with copyover and then write a
simple command to run ./configure and make from inside the MUD.

These are just a couple of ideas, but they may give you something to
mull over as possible ways of increasing the security of your MUD from
your programmers.

Regards, Peter


     +------------------------------------------------------------+
     | Ensure that you have read the CircleMUD Mailing List FAQ:  |
     |  http://qsilver.queensu.ca/~fletchra/Circle/list-faq.html  |
     +------------------------------------------------------------+



This archive was generated by hypermail 2b30 : 04/10/01 PDT