Date: Sat, 4 Mar 2006 18:01:34 +0200 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: Kovesdan Gabor <gabor.kovesdan@t-hosting.hu> Cc: freebsd-questions@freebsd.org Subject: Re: Where am I? :) Message-ID: <20060304160134.GA34673@flame.pc> In-Reply-To: <4409B8A0.40501@t-hosting.hu> References: <4408D4D3.4030102@t-hosting.hu> <20060304000640.GA26726@flame.pc> <44094903.8080006@t-hosting.hu> <20060304145809.GA33965@flame.pc> <4409B8A0.40501@t-hosting.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2006-03-04 16:56, Kovesdan Gabor <gabor.kovesdan@t-hosting.hu> wrote: >Giorgos Keramidas wrote: >> What is your method? I haven't seen any description of how >> *you* ended up not being logged in. Are you using screen(1) >> or another program that tweaks /var/log/wtmp? Which program? >> Have you found out why your login seems record in wtmp was >> marked as logged out? > > Here's my method: > > http://www.freebsd.org/cgi/query-pr.cgi?pr=94060 Ah, I see now. Thanks :) >> What a bug about this would report is that set-user-id >> programs, like screen(1), can do all sorts of nasty things if >> abused. This isn't exactly a bug, but common knowledge. > > /bin/login is suid, too. Can't screen and login be modified > somehow to take care of this issue? login is part of the base system so it should be fixed, if possible. `screen' is a thirdparty program and the feature *is* deliberate, but I think it can be disabled by running screen as non-suid root.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060304160134.GA34673>