Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience

To: debian-user@lists.debian.org
Subject: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
From: Brian <ad44@cityscape.co.uk>
Date: Fri, 21 Mar 2014 11:41:29 +0000
Message-id: <[🔎] 21032014113647.c62190855751@desktop.copernicus.demon.co.uk>
In-reply-to: <[🔎] 20140321111818.GB10490@darac.org.uk>
References: <[🔎] CAOsGNSSDt+5w-tEAiJNkFNkL0TMcLF4LjUiOkkW+oXDFiei2pQ@mail.gmail.com> <[🔎] 20032014141516.0992330632ae@desktop.copernicus.demon.co.uk> <[🔎] 20140321092421.GA15054@bryant.redmars.org> <[🔎] 20140321095203.GB4030@copernicus.demon.co.uk> <[🔎] 20140321102454.GA16657@bryant.redmars.org> <[🔎] 21032014103947.7b37bc831857@desktop.copernicus.demon.co.uk> <[🔎] CAOZWb-q+WwdAdB6Nz0RrHPRqvmZC0_Y3oi36V55A2H7yRFO9OQ@mail.gmail.com> <[🔎] 20140321111818.GB10490@darac.org.uk>

On Fri 21 Mar 2014 at 11:18:19 +0000, Darac Marjal wrote:

> On Fri, Mar 21, 2014 at 11:06:03AM +0000, Robin wrote:
> > I may have missed something. If someone has physical access to your
> > machine can't they just power off and go into single user mode and
> > change the root password?
> 
> Maybe, maybe not. Console access doesn't have to mean complete access.
> The scenario I always have in my head for these sorts of things is a
> Computer Lab at a university/college. You can allow anyone to come up
> and use the machine via the keyboard/mouse/VDU attached to it, but to
> counter the attack vector you mention, you simply lock the computer
> itself away in a secure cage under the desk. That also stops the
> "security vector" of someone simply picking up the machine and walking
> off with it ;)

For the situation when X is started with startx would 'startx & exit'
prevent the termination of an X session even if CTRL+ALT+FN etc gets
console access?

Reply to:

Follow-Ups:
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: "Valerio Vanni" <valerio@valeriovanni.com>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Vincent Lefevre <vincent@vinc17.net>

References:
- Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Zenaan Harkness <zen@freedbms.net>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Brian <ad44@cityscape.co.uk>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Robin <rc.rattusrattus@gmail.com>
- Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
  - From: Darac Marjal <mailinglist@darac.org.uk>

Prev by Date: Re: Debian on a Dell Latitude E7440
Next by Date: Re: Great Debian experience
Previous by thread: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
Next by thread: Re: Security Implications of running startx from command line - was Re: Startx: was Great Debian experience
Index(es):
- Date
- Thread