4.3BSD-Tahoe/usr/man/cat8/dm.0
DM(8) UNIX Programmer's Manual DM(8)
N�NA�AM�ME�E
dm - dungeon master
S�SY�YN�NO�OP�PS�SI�IS�S
l�ln�n -�-s�s d�dm�m g�ga�am�me�e
D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
_�D_�m is a program used to regulate game playing. _�D_�m expects
to be invoked with the name of a game that a user wishes to
play. This is done by creating symbolic links to _�d_�m, in
/_�u_�s_�r/_�g_�a_�m_�e_�s, for all of the regulated games. The actual
binaries for these games should be placed in a ``hidden''
directory, /_�u_�s_�r/_�g_�a_�m_�e_�s/_�h_�i_�d_�e, that may only be accessed by the
_�d_�m program. _�D_�m determines if the requested game is avail-
able and, if so, runs it. The file /_�u_�s_�r/_�g_�a_�m_�e_�s/_�d_�m._�c_�o_�n_�f_�i_�g
controls the conditions under which games may be run. For
remotely mounted file systems, a machine name may be
appended to the config file name, i.e. the machine
``rip.berkeley.edu'' will use the file _�d_�m._�c_�o_�n_�f_�i_�g._�r_�i_�p if it
is present, otherwise it will use _�d_�m._�c_�o_�n_�f_�i_�g.
The file /_�u_�s_�r/_�g_�a_�m_�e_�s/_�n_�o_�g_�a_�m_�e_�s may be used to ``turn off'' game
playing. If the file exists, no game playing is allowed;
the contents of the file will be displayed to any user
requesting a game.
F�FI�IL�LE�ES�S
/usr/games/dm.config - configuration file
/usr/games/hide - directory of ``real'' binaries
/usr/games/nogames - turns off game playing
S�SE�EE�E A�AL�LS�SO�O
dm.config(5)
B�BU�UG�GS�S
Two problems result from _�d_�m running the games setuid
``games''. First, all games that allow users to run UNIX
commands should carefully set both the real and effective
user id's immediately before executing those commands.
Probably more important is that _�d_�m never be setuid anything
but ``games'' so that compromising a game will result only
in the user's ability to play games at will. Secondly,
games which previously had no reason to run setuid and which
accessed user files may have to be modified.
Printed 7/9/88 July 9, 1988 1