From: pdc@dcs.ed.ac.uk (Paul Crowley) Subject: Re: Packaging Linux Date: 25 Nov 1992 17:34:09 GMT
Quoting stud2@aifbaino.aifb.uni-karlsruhe.de (Norbert Kuck) in article <1992Nov24.132235.12188@rz.uni-karlsruhe.de>:
An excellent article. I agree with everything he said.
>1) A command called 'ushut'. This is a C program with the suid-bit set, that
> basically uses 'system ()' to execute the 'shutdown'-script with
^^^^^^
> root-permissions.
Not "system" itself; that would introduce a security hole the size of
Mexico City... use fork/execve directly, it's more hassle but much more
secure. And it should refuse to run if the user isn't logged on on the
console, I for one intend to make it possible for remote users to log
into my Linux box if at all possible.
>BTW, wouldn't it be possible to catch Ctrl-Alt-Del somewhere and make
>it execute something like 'ushut' ? This would definitely be the best
>solution for Joe DOS-User.
I like this idea. Of course, a confirmation dialogue is essential, and
it should be impossible when the terminal is locked -- and the password
of either the root user or the user logged in at the console should be
required. Xfree86 would also have to ask whether the user wanted this
or just the death of the server.
__ _____
\/ o\ Paul Crowley pdc@dcs.ed.ac.uk \\ //
/\__/ "I'm the boy without a soul." \X/