[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#556522: hurd - using the login shell is insecure

Justus Winter, le Mon 10 Jan 2011 00:36:07 +0100, a écrit :
> I incorporated some code from util-linuxs getty to make hurds getty ask
> for a login name and pass that name to login. This way the login shell
> is no longer needed. I also turned on logins --paranoid flag to prevent
> it leaking whether a user exists or not.

Err, did you see my previous reply? It's all already implemented:

“Note: to do so we simply need to create a login account with default
shell set to /bin/loginpr and home set to /etc/login.”


Reply to: