subject:"ttys, setuid security..."

Re: ttys, setuid & security...

1997-06-02 Thread Raja R Harinath

Vincent Renardias <[EMAIL PROTECTED]> writes:
> Has any of you had a look at this:
> ftp://sunsite.unc.edu/pub/Linux/Incoming/pttyd-0.9.tgz
> 
> [its LSM file says:
> 
> Description:The Pseudo-tty Daemon.  Changes ownership on the slave
> pseudo-tty's in an appropriate manner, mainaining security 
> without a suid root screen, xterm, or rxvt.
> ]
> 
> Maybe we should consider packaging this, it will allow to remove the 
> setuid bit of some programs like xterm, rxvt, ...
> 
> Opinions?

Here's an excerpt from an recent `linux-gcc' discussion that may be
interesting.  It's regarding SysV style ptys in Linux.  This may be the
way to go, in the long term, but would require mods to the kernel etc.

  From: Ulrich Drepper <[EMAIL PROTECTED]>
  Subject: Re: volunteer needed
  To: "Theodore Y. Ts'o" <[EMAIL PROTECTED]>
  Cc: "ir. Mark M._Kettenis" <[EMAIL PROTECTED]>, linux-gcc@vger.rutgers.edu
  Date: 30 May 1997 04:37:02 +0200
  Reply-To: [EMAIL PROTECTED] (Ulrich Drepper)

  "Theodore Y. Ts'o" <[EMAIL PROTECTED]> writes:
  > 1)  Open /dev/ptmx to get a free master psuedo tty.  The slave
  > pseudo-tty at this point is "locked" since the modes and permissions
  > haven't been set up yet.  What this means is that any attempt to open
  > the slave psuedo-tty will return an error.
  > 
  > 2)  Call grantpt(master_fd) to fix up the modes and permissions.  Note
  > that this either requires a setuid root program to be forked and
  > exec'ed, *or* magic kernel implementations that really paranoid about
  > what they do.
  > 
  > 3)  unlockpt(master_fd) clears the locked flag which now allows other
  > processes to try to open the slave pty.
  > 
  > 4)  Finally, ptsname(master_fd) will return the name of slave psedo-tty,
  > which you can then open.

  This all sounds plausible and I was wrong in the beginning.  It's a
  bit more complicated than I thought.

  Anyhow, for complete Unix compatibility Linux needs this functionality
  and companies writing Unix software will probably require this
  interface.

  So, "Search for volunteers, part II": any volunteers for the kernel
  changes?

  -- Uli
  ---.  [EMAIL PROTECTED]  ,-.   Rubensstrasse 5
  Ulrich Drepper  \,---'   \  76149 Karlsruhe/Germany
  Cygnus Solutions `--' [EMAIL PROTECTED]  `

-- 
Raja R Harinath -- [EMAIL PROTECTED]
"When all else fails, read the instructions."  -- Cahn's Axiom
"Our policy is, when in doubt, do the right thing."   -- Roy L Ash

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . 
Trouble?  e-mail to [EMAIL PROTECTED] .

ttys, setuid & security...

1997-06-01 Thread Vincent Renardias


Has any of you had a look at this:
ftp://sunsite.unc.edu/pub/Linux/Incoming/pttyd-0.9.tgz

[its LSM file says:

Description:The Pseudo-tty Daemon.  Changes ownership on the slave
pseudo-tty's in an appropriate manner, mainaining security 
without a suid root screen, xterm, or rxvt.
]

Maybe we should consider packaging this, it will allow to remove the 
setuid bit of some programs like xterm, rxvt, ...

Opinions?

--
- ** Linux ** +---+ ** WAW ** -
-  [EMAIL PROTECTED] | RENARDIAS Vincent |  [EMAIL PROTECTED]  -
-  Debian/GNU Linux   +---+  http://www.waw.com/  -
-  http://www.debian.org/   |WAW  (33) 4 91 81 21 45  -
---


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . 
Trouble?  e-mail to [EMAIL PROTECTED] .

Re: ttys, setuid & security...

ttys, setuid & security...

2 matches

Site Navigation

Mail list logo

Footer information