Picking this up late but am I current in understanding this essentially creates an additional kernel level sandbox to the ssh secure tty tunnelling? and is this for both server and client or just for server env./?
On Fri, Apr 11, 2014 at 12:18 PM, Jaroslav Reznik <jreznik@xxxxxxxxxx> wrote:
----- Original Message -----Fedora Base Working Group discussed this Change on today's meeting
> = Proposed System Wide Change: The securetty file is empty by default =
> https://fedoraproject.org/wiki/Changes/securetty_file_is_empty_by_default
>
> Change owner(s): quickbooks <quickbooks.office@xxxxxxxxx>
>
> The securetty file is empty by default
>
> There's on-going discussion for this Change on the devel list.
> https://lists.fedoraproject.org/pipermail/devel/2014-April/197344.html
(2014-04-11) and tends to support counter proposal to remove securetty
entirely from the default PAM configuration (not from distribution)
as discussed in the thread mentioned above. Base WG would like to ask
FESCo to weight it as part of decision making (once this change hits
FESCo meeting).
Jaroslav
on behalf of Base WG
--
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
