Bug#556522: hurd - using the login shell is insecure

To: submit@bugs.debian.org
Subject: Bug#556522: hurd - using the login shell is insecure
From: Bastian Blank <waldi@debian.org>
Date: Mon, 16 Nov 2009 15:27:45 +0100
Message-id: <[🔎] 20091116142745.GA5364@wavehammer.waldi.eu.org>
Reply-to: Bastian Blank <waldi@debian.org>, 556522@bugs.debian.org

Package: hurd
Version: 20090404-2
Severity: important
Tags: security

Hurd uses a login shell by default on the ttys. This is a security
problem as it allows access with other permissions to all ressources.

Bastian

-- 
You're too beautiful to ignore.  Too much woman.
		-- Kirk to Yeoman Rand, "The Enemy Within", stardate unknown

Reply to:

Follow-Ups:
- Bug#556522: hurd - using the login shell is insecure
  - From: Samuel Thibault <sthibault@debian.org>
- Bug#556522: hurd - using the login shell is insecure
  - From: <olafBuddenhagen@gmx.net>

Prev by Date: Re: Bug#551094: FTBFS aegis
Next by Date: Bug#556526: hurd - FHS violation: /libexec
Previous by thread: Re: xorg-server_1.6.3.901-1+hurd.1_hurd-i386.changes ACCEPTED
Next by thread: Bug#556522: hurd - using the login shell is insecure
Index(es):
- Date
- Thread