Date: Wed, 18 Apr 2001 09:27:31 -0500 From: Dan Nelson <dnelson@emsphone.com> To: Dima Dorfman <dima@unixfreak.org> Cc: hackers@FreeBSD.ORG Subject: Re: Restricting the console to one vty (patch) Message-ID: <20010418092731.B733@dan.emsphone.com> In-Reply-To: <20010418080952.52F3E3E09@bazooka.unixfreak.org>; from "Dima Dorfman" on Wed Apr 18 01:09:52 GMT 2001 References: <20010418080952.52F3E3E09@bazooka.unixfreak.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Apr 18), Dima Dorfman said:
> Attached is a patch that makes it possible to restrict (``freeze'')
> the console to a single vty (the active one). This can be used in
> conjunction with, e.g., lock(1) to setup a relative safeguard against
> malicious access while the user is away from his terminal (lock(1)
> alone doesn't help unless the user wants to do it for every vty he's
> logged into, which quickly gets repetitive). I believe this would be
> especially useful for laptops.
Isn't there already support for this?
struct vt_mode {
char mode;
#define VT_AUTO 0 /* switching is automatic */
#define VT_PROCESS 1 /* switching controlled by prog */
#define VT_KERNEL 255 /* switching controlled in kernel */
char waitv; /* not implemented yet SOS */
short relsig;
short acqsig;
short frsig; /* not implemented yet SOS */
};
typedef struct vt_mode vtmode_t;
#define VT_SETMODE _IOW('v', 2, vtmode_t)
#define VT_GETMODE _IOR('v', 3, vtmode_t)
If you call VT_SETMODE and tell the console that screen switching is
VT_PROCESS, that will disable VTY switching (libvgl sets this so it can
disable graphics mode when the user wants to switch screens).
--
Dan Nelson
dnelson@emsphone.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010418092731.B733>