On 1-Jul-08, at 11:05 AM, Garrett D'Amore wrote: > Screen uses a socket directory, the location of which is determined > by an option. See http://www.delorie.com/gnu/docs/screen/screen_147.html > for more information. > > How will the delivered version of screen be configured? My biggest > worry here is that care is taken to ensure that the sockets used by > screen are properly protected from any potential security weaknesses. >
The location of the socket directory in this case is per-user, stored in /tmp/screens/S-<username> with permissions set to 700 and owner:group being the owner:group of the calling user > I'd like to see the proposed default /etc/screenrc as well, since a > number of other interesting settings can be set there, including a > potential reference to an external locking program, etc. I think > this is just a matter of completeness in the case materials, to > ensure that all referenced files are documented appropriately so > that there are no surprises. > sure, it's available at http://cr.opensolaris.org/~error404/etcscreenrc > The following URLs are also informative, btw. > > http://www.delorie.com/gnu/docs/screen/screen_140.html > http://www.delorie.com/gnu/docs/screen/screen_139.html > > All of those manuals are from a somewhat older version of screen, > but I expect their contents are still very much germane. > > -- Garrett > On a different note, I am also told I need to inform ARC that screen is to be built with pam support enabled, such that users locking screens can utilize their regular UNIX authentication method to unlock it. This is my fault and a result of inexperience. I apologize. > Darren J Moffat wrote: >> Template Version: @(#)sac_nextcase 1.66 04/17/08 SMI >> This information is Copyright 2008 Sun Microsystems >> 1. Introduction >> 1.1. Project/Component Working Name: >> GNU screen >> 1.2. Name of Document Author/Supplier: >> Author: John Sonnenschein >> 1.3 Date of This Document: >> 01 July, 2008 >> 4. Technical Description >> >> 4.1. Details: >> >> GNU screen is a terminal multiplexer application distributed by the >> GNU project which supports session persistence, detachment from the >> calling shell, session multiplexing ( multiple windows on a single >> terminal ), and session sharing >> >> The current version of screen is 4.0.2. >> >> 4.2. Interfaces: >> >> Exported Interfaces >> Interface Classification Comments >> >> ------------------------------------------------------------------------- >> SUNWscreen Uncommitted Package for >> binaries >> SUNWscreenrc Uncommitted Package >> configuration file >> >> /usr/bin/screen Uncommitted The screen binary >> /usr/share/lib/terminfo/s/screen Uncommitted The 'screen' >> terminfo file >> /etc/screenrc Uncommitted default >> configuration file >> >> In addition we will deliver a manual page in /usr/share/man >> section 1 >> >> Imported Interfaces >> >> Interface Classification Comments >> >> ------------------------------------------------------------------------- >> There's no imported interfaces worth mentioning. >> >> 4.3. Packaging & Delivery: >> >> SUNWscreen(base package) - base package for >> binaries >> SUNWscreenrc(configuration package) - package for >> configuration file >> 6. Resources and Schedule >> 6.4. Steering Committee requested information >> 6.4.1. Consolidation C-team Name: >> SFW >> 6.5. ARC review type: FastTrack >> 6.6. ARC Exposure: open >> >> > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.opensolaris.org/pipermail/opensolaris-arc/attachments/20080701/268b4a7b/attachment.html>
