Re: Bug#556522: hurd - using the login shell is insecure
olafBuddenhagen@gmx.net, le Tue 17 Nov 2009 01:23:02 +0100, a écrit :
> On Mon, Nov 16, 2009 at 03:27:45PM +0100, Bastian Blank wrote:
> > Hurd uses a login shell by default on the ttys. This is a security
> > problem as it allows access with other permissions to all ressources.
> This is not exactly true: actually the access of the login shell is
> controlled by the "unknown" permissions -- a special fourth set of file
> permission bits.
Which still permits to fill /tmp with files, that's not something Debian
probably likes to allow by default.