FS#20284 - [nethack] runs as root because arch does not have the games user.

Attached to Project: Community Packages
Opened by Moritz Wilhelmy (wzff) - Monday, 26 July 2010, 18:20 GMT
Last edited by Jakob Gruber (schuay) - Saturday, 08 January 2011, 10:37 GMT
Task Type Bug Report
Category Packages
Status Closed
Assigned To Jakob Gruber (schuay)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 2
Private No

Details

Description:
Because Arch does not have a games user, the popular nethack game runs setuid 0.

Steps to reproduce:
starf ~ $ ls -l /usr/lib/nethack/nethack
-rwsr-xr-x 1 root root 1472772 Nov 7 2009 /usr/lib/nethack/nethack
This task depends upon

Closed by  Jakob Gruber (schuay)
Saturday, 08 January 2011, 10:37 GMT
Reason for closing:  Fixed
Additional comments about closing:  3.4.3-5
Comment by Moritz Wilhelmy (wzff) - Monday, 26 July 2010, 18:23 GMT
nethack used to be run as games user on ancient Unices to avoid users from cheating by editing bones and save files. However, this is redundant in the age of single-user machines. I hope you'll patch this out.
Also, (unrelated) would you mind adding the colour patches from debian? These are the most commonly used patches for nethack and enhance gameplay significantly.
Because of it's enormous age and hackyness, nethack is very hard to package. I tried fixing this myself, but failed miserably. I'd suggest to take a look how debian does it.
Comment by Jan de Groot (JGC) - Monday, 26 July 2010, 21:59 GMT
Games should be setgid games and hiscore files should be root:games owned with write permissions for the games group. There's no need for a games user, the group should handle that (and the group should have no users that are member of it).
Comment by Jakob Gruber (schuay) - Thursday, 06 January 2011, 09:53 GMT
This should be fixed with 3.4.3-5 (it now runs setgid games), can you confirm?

Loading...