login: add big fat comment about SIGINT - prevent

author Denis Vlasenko <vda.linux@googlemail.com>

Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)

committer Denis Vlasenko <vda.linux@googlemail.com>

Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)
author Denis Vlasenko <vda.linux@googlemail.com>
Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)
committer Denis Vlasenko <vda.linux@googlemail.com>
Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)
diff --git a/loginutils/login.c b/loginutils/login.c

index 04283007b213e1a7908c2aa059cee19e2b3d86f2..2ad52c63e823167a584542b136676025c49a9804 100644 (file)
--- a/loginutils/login.c
+++ b/loginutils/login.c
@@ -386,7 +386,14 @@ auth_failed:
         // /* TIOCSCTTY: steal tty from other process group */
         // if (ioctl(0, TIOCSCTTY, 1)) error_msg...
  
-       signal(SIGALRM, SIG_DFL); /* set signals to defaults */
+       /* set signals to defaults */
+       signal(SIGALRM, SIG_DFL);
+       /* Is this correct? This way user can ctrl-c out of /etc/profile,
+        * potentially creating security breach (tested with bash 3.0).
+        * But without this, bash 3.0 will not enable ctrl-c either.
+        * Maybe bash is buggy?
+        * Need to find out what standards say about /bin/login -
+        * should it leave SIGINT etc enabled or disabled? */
         signal(SIGINT, SIG_DFL);
  
         run_shell(tmp, 1, 0, 0);        /* exec the shell finally */
author	Denis Vlasenko <vda.linux@googlemail.com>
	Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)
committer	Denis Vlasenko <vda.linux@googlemail.com>
	Tue, 31 Oct 2006 18:30:56 +0000 (18:30 -0000)