>People that want to install gnuplot with builtin vga-driver
>should be aware that gnuplot has a SHELL-ESCAPE!
>It should never ever been installed suid root!
>should probably look like that:
>-rwxr-sr-x 1 bin mem 238596 Dec 4 11:02 /usr/local/bin/gnuplot*
>crw-rw---- 1 root mem 1, 2 Aug 29 23:48 /dev/kmem
>crw-rw---- 1 root mem 1, 1 Aug 29 23:48 /dev/mem
>... if you don't want others to become root w/o password :->
making /dev/[k]mem world readable is that doing so is a secuty hole.
With the permissions you suggest, anyone can run gnuplot, escape to a
shell, and access /dev/[k]mem. Bad idea.
I guess a better solution would be to modify the shell escape to
restore the old userid.