[396] in linux-security and linux-alert archive
Re: console security (was Re: problem wi
daemon@ATHENA.MIT.EDU (Miller, Raul D.)
Thu Sep 28 01:12:56 1995
From: "Miller, Raul D." <RDMiller@legislate.com>
To: kjh@seas.smu.edu (Kenneth J. Hendrickson),
owner-linux-security@tarsier.cv.nrao.edu
Cc: linux-security@tarsier.cv.nrao.edu
Date: Mon, 25 Sep 95 23:35:00 PDT
Zygo Blaxell:
None of these are true for Linux; hence Linux console security sucks.
Note that there's a difference between console security for users and console
security for processes. For example, I may have a root session on one of the
consoles, and a test session on another. Just because *I* can flip between
consoles and do things as root doesn't mean that I want the test session to
have that capability.
[mod: Linux has had the secure attention key for a very long time; it can
be enabled using setserial. Is there any indication that it doesn't
work? --okir]
I don't know if it works, but last time I checked the copyright on setserial
prevented its free distribution. Personally, I don't think of a feature as
belonging to linux if the code to enable that feature can't be distributed in
the same manner as the kernel.
--
Raul
