Date: Tue, 10 Dec 1996 09:11:37 +0100 (MET) From: Christoph Kukulies <kuku@gilberto.physik.rwth-aachen.de> To: dwhite@resnet.uoregon.edu Cc: kuku@gilberto.physik.rwth-aachen.de, freebsd-questions@freefall.freebsd.org Subject: Re: xconsole - /dev/console Message-ID: <199612100811.JAA13923@gilberto.physik.rwth-aachen.de> In-Reply-To: <Pine.BSI.3.94.961209161556.1382X-100000@gdi.uoregon.edu> from Doug White at "Dec 9, 96 04:17:22 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> On Mon, 9 Dec 1996, Christoph Kukulies wrote: > > > Is there a way to allow a normal user to use xconsole or would > > opening /dev/console to the world compromise security? > > ? People have to run startx or log into a xdm-controlled terminal, so > they're authenticated. It's not that I want to inhibit users seeing the console messages, it was just the point if changing /dev/console's permissions could compromise security anyhow. I've seen /dev/console having crw--w--w- on a Linux system. > > The console is inherently insecure as the three finger salute works from > there. They also probably have access to the power switch, so being > really picky about console security isn't very worthwhile unless the > machine is locked in a safe. > > Doug White | University of Oregon > Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant > http://gladstone.uoregon.edu/~dwhite | Computer Science Major > > --Chris Christoph P. U. Kukulies kuku@gil.physik.rwth-aachen.de
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199612100811.JAA13923>