Bug#311597: anyterm and /bin/login in etch

To: Julian Gilbey <jdg@polya.uklinux.net>
Cc: 311597@bugs.debian.org
Subject: Bug#311597: anyterm and /bin/login in etch
From: "Roberto C. Sanchez" <roberto@familiasanchez.net>
Date: Thu, 20 Oct 2005 16:53:44 -0400
Message-id: <[🔎] 20051020205344.GA12279@miami.familiasanchez.net>
Mail-followup-to: "Roberto C. Sanchez" <roberto@familiasanchez.net>, Julian Gilbey <jdg@polya.uklinux.net>, 311597@bugs.debian.org
Reply-to: "Roberto C. Sanchez" <roberto@familiasanchez.net>, 311597@bugs.debian.org
In-reply-to: <[🔎] 20051020204827.GA10738@burnside>
References: <[🔎] 20051020204827.GA10738@burnside>

On Thu, Oct 20, 2005 at 09:48:27PM +0100, Julian Gilbey wrote:
> Just discovered that in etch, /bin/login is not suid, which makes
> anyterm useless.  The workaround I used was (I'm sure not totally
> securely, though):
> 
> In the anyterm.conf apache configuration file, I gave
> /usr/sbin/anygetty the  "--loginprog /usr/sbin/anylogin"  option, and
> made anygetty setgid to anyterm (a group created by addgroup --system
> anyterm).
> Then /usr/sbin/anylogin is owned by root:anyterm with privs 4750,
> compiled from:
> 
> #define REAL_PATH "/bin/login"
> int main(int ac, char **av)
> {
>   execv(REAL_PATH, av);
> }
> 

Julian,

Thanks for the pointer.  I am still working on packaging up anyterm and
there are a number of security issue with it that must be resolved.
This will certainly fall into that category.

-Roberto
-- 
Roberto C. Sanchez
http://familiasanchez.net/~roberto

Attachment: pgpDrSMVApUJk.pgp
Description: PGP signature

Reply to:

References:
- Bug#311597: anyterm and /bin/login in etch
  - From: Julian Gilbey <jdg@polya.uklinux.net>

Prev by Date: Bug#311597: anyterm and /bin/login in etch
Next by Date: Bug#195948: Maintaining the dspam package in a team.
Previous by thread: Bug#311597: anyterm and /bin/login in etch
Next by thread: Bug#195948: Maintaining the dspam package in a team.
Index(es):
- Date
- Thread