Bug 98788 - [syscons] [patch] Add sysctl to disallow VT_LOCKSWITCH
Summary: [syscons] [patch] Add sysctl to disallow VT_LOCKSWITCH
Status: Closed Not Accepted
Alias: None
Product: Base System
Classification: Unclassified
Component: kern (show other bugs)
Version: 5.5-STABLE
Hardware: Any Any
: Normal Affects Only Me
Assignee: freebsd-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-06-10 21:00 UTC by Ed Schouten
Modified: 2017-06-29 01:36 UTC (History)
1 user (show)

See Also:

Attachments
file.diff (1.26 KB, patch)
2006-06-10 21:00 UTC, Ed Schouten 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ed Schouten 2006-06-10 21:00:30 UTC 
The VT_LOCKSWITCH ioctl for syscons allows a user to disable the Alt Fx
functionality of the terminal. The lock(1) utility also uses this ioctl
when '-v' is passed as an argument.

Though very useful to entirely lock a machine, it may be unwanted (a
public machine). A sysctl to only allow this ioctl to super-users would
be very useful.

Fix: The following patch adds a sysctl that allows you to limit this ioctl's
usage to super-users only.

%%%
How-To-Repeat: Run lock -v on a machine with a lot of users. Other users get mad at you
because they want to log in.