Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]

To: debian-user@lists.debian.org
Subject: Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
From: "Douglas A. Tutty" <dtutty@porchlight.ca>
Date: Wed, 19 Sep 2007 17:46:00 -0400
Message-id: <[🔎] 20070919214600.GB7319@titan.hooton>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20070919165635.GM18802@localhost.localdomain>
References: <[🔎] 46EAFCAF.5070801@rcn.com> <[🔎] alpine.DEB.0.9999.0709141437020.11382@hygvzn-guhyr.pnirva.bet> <[🔎] 1840f6970709141537m2d858045ta7f4ddd6ed35311@mail.gmail.com> <[🔎] 20070914232450.GA23039@localhost.localdomain> <[🔎] 46ED2A69.1030600@rcn.com> <[🔎] 20070918171202.GB18802@localhost.localdomain> <[🔎] 46F016B2.70806@rcn.com> <[🔎] C44EFBCF-DECB-465A-8D49-01FFB3F49A3B@u.washington.edu> <[🔎] 46F04B91.9090501@rcn.com> <[🔎] 20070919165635.GM18802@localhost.localdomain>

On Wed, Sep 19, 2007 at 09:56:35AM -0700, Andrew Sackville-West wrote:

> your point is that an undocumented method of rebooting the computer is
> a security issue not because of the rebooting but because of the lack
> of documentation of a method of rebooting. I agree. you are right to
> report this. 
> 
> I'm not sure how I feel about sysrq being on or off by default, but
> documenting its existence is vastly more important than its default
> configuration. 

I think that it should be off by default, but set up in the kernel to be
configurable with sysctl or something.  Some people find it very useful
who for the reason of testing a default kernel don't want to compile a
custom one with the feature enabled.  Others of us don't want to compile
a kernel period but don't need the functionality.  

Isn't it a basic tennent of security that unused
service/features/whatever should be turned off so that some unknown
problem can't be exploited before it is discovered?

Doug.

Reply to:

References:
- Re: X ignores keyboard and mouse input, but shows cursor movement (etch)
  - From: Ralph Katz <ralph.katz@rcn.com>
- Re: X ignores keyboard and mouse input, but shows cursor movement (etch)
  - From: Richard A Nelson <cowboy@debian.org>
- Re: X ignores keyboard and mouse input, but shows cursor movement (etch)
  - From: "Kelly Clowers" <kelly.clowers@gmail.com>
- Re: X ignores keyboard and mouse input, but shows cursor movement (etch)
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>
- Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: Ralph Katz <ralph.katz@rcn.com>
- Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>
- Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: Ralph Katz <ralph.katz@rcn.com>
- Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: David Brodbeck <brodbd@u.washington.edu>
- Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: Ralph Katz <ralph.katz@rcn.com>
- Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
  - From: Andrew Sackville-West <andrew@farwestbilliards.com>

Prev by Date: Re: baffling ssh problem
Next by Date: Re: Adding third drive to existing raid0 set
Previous by thread: Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)]
Next by thread: Re: X ignores keyboard and mouse input, but shows cursor movement (etch)
Index(es):
- Date
- Thread