jmsellens@watdragon.waterloo.edu (John M. Sellens) (03/15/91)
I installed ru-cap2 and enet on a Sun4. /dev/enet* are mode 644. atlook can't be run by an ordinary user: % atlook abInit: [ddp: 0.02, 33], [GW: 0.02, 159] starting open: /dev/enetXX: Permission denied NBPInit: DDPOpenSocket error 13 Looking for =:=@* ... NBP nbpFcn: nbpInit not called which isn't too surprising. I will assume that others have seen this. Any opinions on the best way to work with it? Should /dev/enet* be mode 666 so that J. Average User can read and write Ethertalk packets (just as is allowed with IP packets)? Should things like atlook be setgid to a group with access to /dev/enet*? Or what? What about etherstat? Should the average user be allowed to run that? I couldn't see anything relevant to this in the READMEs. Much obliged for any information. John Sellens U of Waterloo jmsellens@dragon.waterloo.edu
hedrick@athos.rutgers.edu (Charles Hedrick) (03/21/91)
I think it's reasonable to give atlook and etherstat group access to /dev/enet. I don't see any way this could cause a security problem.