Re: init scripts and su

To: debian-devel@lists.debian.org, debian-security@lists.debian.org
Subject: Re: init scripts and su
From: Andrew Pimlott <andrew@pimlott.net>
Date: Wed, 28 Jul 2004 04:54:35 -0400
Message-id: <[🔎] 20040728085435.GC21350@pimlott.net>
Mail-followup-to: Andrew Pimlott <andrew@pimlott.net>, debian-devel@lists.debian.org, debian-security@lists.debian.org
In-reply-to: <[🔎] 200407281656.20481.russell@coker.com.au>
References: <[🔎] 200407261453.56729.russell@coker.com.au> <[🔎] 20040726214816.GB1576@pimlott.net> <[🔎] 200407281656.20481.russell@coker.com.au>

On Wed, Jul 28, 2004 at 04:56:20PM +1000, Russell Coker wrote:
> On Tue, 27 Jul 2004 07:48, Andrew Pimlott <andrew@pimlott.net> wrote:
> > If this is a real problem (which it sounds like), it's not specific to
> > init scripts.  Shouldn't it be fixed in su?
> 
> Ideally yes.  But that involves proxying all operations on the pseudo-tty 
> which is quite a difficult task.

Ok, I don't know enough about how terminals work.  I thought from your
description that there was some way to protect the terminal from the
child by creating a new session or something.

But if su is really as unsafe as you say, maybe the pseudo-tty is the
right answer.  I verified that if I "su - andrew bash" as root, then
andrew can write to root's terminal, even after bash exits (just hold
the fd open).  I don't know how to go further, but from what you say I
believe it's possible.  Sounds scary.

Andrew

Reply to:

References:
- init scripts and su
  - From: Russell Coker <russell@coker.com.au>
- Re: init scripts and su
  - From: Andrew Pimlott <andrew@pimlott.net>
- Re: init scripts and su
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Re: Looking for tcsh bug report #28959
Next by Date: Re: security related bug report - no maintainer reaction for 1 year
Previous by thread: Re: init scripts and su
Next by thread: Re: init scripts and su
Index(es):
- Date
- Thread