Bugtraq mailing list archives
Announcing ptyfix
From: Paul Szabo <psz () MATHS USYD EDU AU>
Date: Tue, 1 May 2001 06:58:52 +1000
Announcing available new software: The privileged (setuid root) command ptyfix is used from within executables that use the openpty() call. An example is xterm: with this helper, xterm itself does not need to be setuid. Traditionally, xterm is setuid so that it can set the permissions on the tty device securely, and so it can set up utmp and wtmp entries; it does not give up privileges so that at the end it can re-set the permissions and un-do the utmp, wtmp entries. The command ptyfix can do the setting and un-setting, so xterm does not need to be setuid at all. Currently ptyfix works only on Compaq Tru64 UNIX (DEC OSF/1) machines. Please feel free to adapt this software to other operating systems. The ptyfix package is available from http://www.maths.usyd.edu.au:8000/u/psz/securedu.html#xterm or http://www.maths.usyd.edu.au:8000/u/psz/du/ptyfix.tgz Paul Szabo - psz () maths usyd edu au http://www.maths.usyd.edu.au:8000/u/psz/ School of Mathematics and Statistics University of Sydney 2006 Australia
Current thread:
- Announcing ptyfix Paul Szabo (May 01)
- Re: Announcing ptyfix Florian Weimer (May 02)
- Re: Announcing ptyfix Casper Dik (May 03)
- Re: Announcing ptyfix Florian Weimer (May 02)