Linux login method secure?

Richard Lightman richard at nezumi.plus.com
Mon Sep 2 02:07:30 PDT 2002


* Richard Lightman <richard at nezumi.plus.com> [2002-09-02 10:03]:
> * T.B. van der Molen <tbm at home.nl> [2002-09-02 06:54]:
> > 
> > This does not exist in the Linux login method. So, someone could easily 
> > write a program or script that visually imitates the behaviour of the 
> > login program on a system, capture the user's login information and 
> > could then exit and log out so the user sees the real login program.
> > 
> Read /usr/src/linux/Documentation/sysrq.txt
> 
> When compiling the kernel, add:
> 
> Kernel hacking  --->
>     [*] Kernel debugging
>     [*]   Magic SysRq key (NEW)
> 
I just found /usr/src/linux/Documentation/SAK.txt, which explains how
to get a secure access key without the magic sysrq key.

Richard



-- 
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe lfs-chat' in the subject header of the message



More information about the lfs-chat mailing list