Date: Thu, 11 Jan 2001 07:40:04 -0800 (PST) From: David Malone <dwmalone@maths.tcd.ie> To: freebsd-bugs@FreeBSD.org Subject: Re: misc/24254: Security hole in use of kbdcontrol Message-ID: <200101111540.f0BFe4M52048@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR misc/24254; it has been noted by GNATS. From: David Malone <dwmalone@maths.tcd.ie> To: arc_of_avalon@yahoo.com Cc: freebsd-gnats-submit@FreeBSD.org Subject: Re: misc/24254: Security hole in use of kbdcontrol Date: Thu, 11 Jan 2001 15:37:09 +0000 On Thu, Jan 11, 2001 at 07:02:24AM -0800, arc_of_avalon@yahoo.com wrote: > By default kbdcontrol is world executable and allows any local > user to change the keyboards of all the vty's, including any that > root is logged in to. This could allow a user to virtually disable > the console (non-X11) which, when used to activate an unusable > keymap, would require a reboot to correct. Note that kbdcontrol > does not affect the keymap in X11. A kernel option KBD_DISABLE_KEYMAP_LOAD currently exists, which stops people changing the keymap. I guess it would be possible to add a sysctl which stops people other than root changing the keymap setup. David. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200101111540.f0BFe4M52048>