[Pkg-shadow-devel] Bug#628843: login: tty hijacking possible in "su" via TIOCSTI ioctl
Simon Ruderich
simon at ruderich.org
Mon Oct 3 18:46:26 UTC 2016
On Mon, Oct 03, 2016 at 04:11:41PM +0200, up201407890 at alunos.dcc.fc.up.pt wrote:
> Btw, at least in redhat based systems, su uses setsid() when the -c option
> is given, just like use_pty in sudo. Not sure if this is true in debian.
Yes, that's true in Debian as well.
Regards
Simon
--
+ privacy is necessary
+ using gnupg http://gnupg.org
+ public key id: 0x92FEFDB7E44C32F9
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-shadow-devel/attachments/20161003/4a77972d/attachment-0001.sig>
More information about the Pkg-shadow-devel
mailing list