Re: write protecting syslog

From: George Greer (greerga@circlemud.org)
Date: 02/25/02


On Mon, 25 Feb 2002, paolo greco wrote:

>Kras Kresh wrote:
>
>> Before, the syslog was write protected during game play.
>> Now, it is not. I need to know why.
>
>Ever tried to launch circlemud from root user?

PLEASE, FOR THE LOVE OF GOD, DON'T RUN CIRCLEMUD AS ROOT!!! [1]

Running CircleMUD as root is a bad, bad idea.  It has had nowhere near the
level of security auditing required to run as root.  Additionally, even if
we did do that audit, chances are _you_ aren't going to keep up that level
of attention for your changes.  The paranoid could extend this and surmise
correctly that they want to run the MUD as its own account, with as little
privileges as possible.

--
George Greer
greerga@circlemud.org

1: Borrowed and adapted from Jeremy's warning in 'olc.c'.

--
   +---------------------------------------------------------------+
   | FAQ: http://qsilver.queensu.ca/~fletchra/Circle/list-faq.html |
   | Archives: http://post.queensu.ca/listserv/wwwarch/circle.html |
   | Newbie List:  http://groups.yahoo.com/group/circle-newbies/   |
   +---------------------------------------------------------------+



This archive was generated by hypermail 2b30 : 06/25/03 PDT