[xgk]dm hackery.
Tom Buskey
tom at buskey.name
Thu Jun 1 15:00:01 EDT 2006
On 6/1/06, Steven W. Orr <steveo at syslang.net> wrote:
>
> I have a security question that relates to how to get around xlock. There
> are 2 scenarios.
>
> scenario #1: In this case, the system is not configured to run a graphic
> login. User Freddy logs in in text mode and then runs startx. While
> running his session, he locks the monitor using xlock. He walks away and
> Boris Badinoff comes along. BB types "Ctl-Alt-F1" and is taken to the text
> window that is running X. He then types Ctl-C and has commandeered the
> text login and can do anything that that account allows. Thank you xlock.
Well, Freddy should've done startx & and then logged out of the text window.
scenario #2: In this case, the computer is configured to run at runlevel 5
> and Freddy logs in on a graphic login (i.e., xdm, kdm, etc...). BB comes
> along and hits Ctl-Alt-F1 and gets taken to the mgetty prompt for
> screen1. BB (or is it me) is stuck.
ctrl-alt-F7 to go back to the graphic screen? BB still isn't in Freddy's
session though.
Is it possible for BB to be able to do anything with the machine (short of
> sticking a cd in and rebooting) in scenario 2 to get control of that
> user's account?
Well, physical access and all.
Whether you need to do something is the cost of the risk exposure and your
assesment of it. In some environments, I've seen no passwords for anyone.
If you had a user that abused other accounts, you fired them.
--
> Time flies like the wind. Fruit flies like a banana. Stranger things
> have .0.
> happened but none stranger than this. Does your driver's license say Organ
> ..0
> Donor?Black holes are where God divided by zero. Listen to me! We are all-
> 000
> individuals! What if this weren't a hypothetical question?
> steveo at syslang.net
> _______________________________________________
> gnhlug-discuss mailing list
> gnhlug-discuss at mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20060601/f3622551/attachment.html
More information about the gnhlug-discuss
mailing list