[2444] in bugtraq
Re: little whole on Suns concerning /dev/kbd
daemon@ATHENA.MIT.EDU (James Poland)
Mon Dec 11 11:04:11 1995
Date: Mon, 11 Dec 1995 07:11:18 -0500
Reply-To: Bugtraq List <BUGTRAQ@CRIMELAB.COM>
From: James Poland <poland@cam4.gsfc.nasa.gov>
X-To: BUGTRAQ@CRIMELAB.COM
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@CRIMELAB.COM>
For Solaris 2.x, use the file /etc/logindevperm.
Mine includes the lines:
/dev/console 0600 /dev/mouse:/dev/kbd
/dev/console 0600 /dev/sound/* # audio devices
/dev/console 0600 /dev/fbs/* # frame buffers
----- Begin Included Message -----
>On a SUN with SunOS 4.1.* or Solaris 2.* any user loged on the console can
>remap the abort key sequence (the key sequence to enter the boot monitor).
>Impact: Any arbitary key sequence can enter the boot monitor and halt
>the machine.
>
>Is there a fix possible?
yes, use the file /etc/fbtab
to have at least the fillowing:
/dev/console 0622 /dev/audio
/dev/console 0600 /dev/audioctl
/dev/console 0600 /dev/kbd:/dev/mouse
plus enteries for you graphics framebuffer.
----- End Included Message -----
