Bug#311597: anyterm and /bin/login in etch

To: 311597@bugs.debian.org, "Roberto C. Sanchez" <roberto@familiasanchez.net>
Subject: Bug#311597: anyterm and /bin/login in etch
From: Julian Gilbey <jdg@polya.uklinux.net>
Date: Thu, 20 Oct 2005 21:48:27 +0100
Message-id: <[🔎] 20051020204827.GA10738@burnside>
Reply-to: Julian Gilbey <jdg@polya.uklinux.net>, 311597@bugs.debian.org

Just discovered that in etch, /bin/login is not suid, which makes
anyterm useless.  The workaround I used was (I'm sure not totally
securely, though):

In the anyterm.conf apache configuration file, I gave
/usr/sbin/anygetty the  "--loginprog /usr/sbin/anylogin"  option, and
made anygetty setgid to anyterm (a group created by addgroup --system
anyterm).
Then /usr/sbin/anylogin is owned by root:anyterm with privs 4750,
compiled from:

#define REAL_PATH "/bin/login"
int main(int ac, char **av)
{
  execv(REAL_PATH, av);
}

HTH,

   Julian

Reply to:

Follow-Ups:
- Bug#311597: anyterm and /bin/login in etch
  - From: "Roberto C. Sanchez" <roberto@familiasanchez.net>

Prev by Date: Processed: ITA: xpenguins -- little penguins walk on your windows
Next by Date: Bug#311597: anyterm and /bin/login in etch
Previous by thread: Processed: ITA: xpenguins -- little penguins walk on your windows
Next by thread: Bug#311597: anyterm and /bin/login in etch
Index(es):
- Date
- Thread