[Pkg-shadow-devel] Bug#659878: cannot set terminal process group (-1): Inappropriate ioctl for device
Nicolas François
nicolas.francois at centraliens.net
Mon May 21 21:10:37 UTC 2012
tags 659878 help
thanks
Hello,
I currently can't find any idea how to fix this issue.
The security issue had to be solved by dropping the controlling terminal,
so you cannot start a command that would interact with the current
terminal.
I don't have enough terminal handling skills to find other way to fix the
security issue than by dropping the terminal.
An option could be to keep the controlling terminal when su-ing to root.
The issue would be less visible in sux (probably used mostly to gain root
privileges), but even if the risk when su'ing to root is lower, it does not
smell good.
Alternative on the sux side would be to create a terminal when an
interactive command is started (e.g. starting an xterm in sux should work)
Best Regards,
--
Nekral
More information about the Pkg-shadow-devel
mailing list