> > Which is the sudo case and why sudo uses a separate pty/tty pair as it's > > not just TIOCSTI that's an issue but there are a load of ioctls that do > > things like cause signals to the process or are just annoying - > > vhangup(), changing the speed etc > > > > (And for console changing the keymap - which is a nasty one) > > > > Are any of these annoyances potential security issues? I would be happy > to add patches or modify this one to include extra hardening measures. Or you could just use pty/tty pairs properly the way sudo and other applications do perfectly well. Lots of them are potential security issues - if I sent your console to 1x1 char, change the font and keymap you'd proably be peeved 8-) It's not about hardening against all these (which would break lots of legitimate use cases), it's about having the affected applications do the right thing. It makes sense that TIOCSTI honours namespaces. However it and everything else are correctly handled by creating the lower security level process with its own pty/tty pair. Alan -- To unsubscribe from this list: send the line "unsubscribe linux-doc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
