DM(8) 1990 DM(8) NNAAMMEE dm - dungeon master SSYYNNOOPPSSIISS llnn --ss ddmm ggaammee DDEESSCCRRIIPPTTIIOONN _D_m is a program used to regulate game playing. _D_m expects to be invoked with the name of a game that a user wishes to play. This is done by creating symbolic links to _d_m, in the directory ``/usr/games'' for all of the regulated games. The actual binaries for these games should be placed in a ``hidden'' directory, ``/usr/games/hide'', that may only be accessed by the _d_m program. _D_m determines if the requested game is available and, if so, runs it. The file ``/etc/dm.conf'' controls the conditions under which games may be run. The file ``/etc/nogames'' may be used to ``turn off'' game playing. If the file exists, no game playing is allowed; the contents of the file will be displayed to any user requesting a game. FFIILLEESS /etc/dm.conf - configuration file /etc/nogames - turns off game playing /usr/games/hide - directory of ``real'' binaries /var/log/games.log - game logging file SSEEEE AALLSSOO dm(5) BBUUGGSS Two problems result from _d_m running the games setuid ``games''. First, all games that allow users to run UNIX commands should carefully set both the real and effective user id's immediately before executing those commands. Probably more important is that _d_m never be setuid anything but ``games'' so that compromising a game will result only in the user's ability to play games at will. Secondly, games which previously had no reason to run setuid and which accessed user files may have to be modified. Printed 7/27/90 June 1