|
GNU Screen的一个功能是锁定屏幕.
手册页说:
lockscreen
Lock this display. Call a screenlock
program (/local/bin/lck or
/usr/bin/lock or a builtin if no other
is available). Screen does not accept
any command keys until this program
terminates. Meanwhile processes in the
windows may continue,as the windows
are in the `detached’ state. The
screenlock program may be changed
through the environment variable
$LOCKPRG (which must be set in the
shell from which screen is started)
and is executed with the user’s uid
and gid. Warning: When you leave other
shells unlocked and you have no
password set on screen,the lock is
void: One could easily re-attach from
an unlocked shell. This feature should
rather be called ‘lockterminal’.
如果我登录Linux控制台启动屏幕,然后锁定会话然后离开,那么一个人可以退出屏幕并使用我的凭据下的系统.手册页上面的部分对我来说并不完全清楚.假设攻击者没有其他系统访问权限,他们将不会重启系统.
解决方法
不,你很安全.
如果我不得不猜测你对这个人工页面感到困惑的话,我会说这是警告部分.他们试图说的是,屏幕会话本身并不是锁定的,而是该特定终端上的实例.如果你留下攻击者可以以用户身份启动屏幕的shell,他们就可以访问你在锁定屏幕中运行的内容.
我不确定为什么这是一个场景.如果它是服务器,为什么不用SSH登录?如果它是台式机 – 为什么不运行xlock呢?
(编辑:淮安站长网)
【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容!
|
