Re: About the login shell

To: debian-hurd@lists.debian.org
Subject: Re: About the login shell
From: Sean Neakums <sneakums@zork.net>
Date: Tue, 20 Aug 2002 09:15:46 +0100
Message-id: <[🔎] 6uvg66rln1.fsf@zork.zork.net>
Mail-followup-to: debian-hurd@lists.debian.org
In-reply-to: <[🔎] Pine.GSO.4.44.0208191642460.15952-100000@eel.ENGR.ORST.EDU> (Jason Dagit's message of "Mon, 19 Aug 2002 16:49:41 -0700 (PDT)")
References: <[🔎] Pine.GSO.4.44.0208191642460.15952-100000@eel.ENGR.ORST.EDU>

commence  Jason Dagit quotation:

> Marcus these are my feelings exactly.  I think having to type login
> to login is redundant.  Just like win2k where you type ctrl-alt-del
> (which according to MS improves security), before you login.

That came from the Orange Book security guidelines, I believe.  The
idea is that the SAS (secure attention sequence) is not overrideable
and thus the user can be sure that once the sequence has been entered
he is communicating with the OS and not with a Trojan.  This is quite
different from typing "login" at the prompt of a program that may or
may not be the login shell.

-- 
 /                          |
[|] Sean Neakums            |  Questions are a burden to others;
[|] <sneakums@zork.net>     |      answers a prison for oneself.
 \                          |

Reply to:

Follow-Ups:
- Re: About the login shell
  - From: Jason Dagit <dagit@engr.orst.edu>

References:
- Re: About the login shell
  - From: Jason Dagit <dagit@engr.orst.edu>

Prev by Date: Re: Libc upgrade
Next by Date: Re: How does it go on the AGP-bus front?
Previous by thread: Re: About the login shell
Next by thread: Re: About the login shell
Index(es):
- Date
- Thread