linux – 可以访问锁定的gnu屏幕会话终端吗?

前端之家收集整理的这篇文章主要介绍了linux – 可以访问锁定的gnu屏幕会话终端吗?前端之家小编觉得挺不错的,现在分享给大家,也给大家做个参考。
GNU Screen的一个功能是锁定屏幕.

手册页说:

lockscreen

Lock this display. Call a screenlock
program (/local/bin/lck or
/usr/bin/lock or a builtin if no other
is available). Screen does not accept
any command keys until this program
terminates. Meanwhile processes in the
windows may continue,as the windows
are in the `detached’ state. The
screenlock program may be changed
through the environment variable
$LOCKPRG (which must be set in the
shell from which screen is started)
and is executed with the user’s uid
and gid. Warning: When you leave other
shells unlocked and you have no
password set on screen,the lock is
void: One could easily re-attach from
an unlocked shell. This feature should
rather be called ‘lockterminal’.

如果我登录Linux控制台启动屏幕,然后锁定会话然后离开,那么一个人可以退出屏幕并使用我的凭据下的系统.手册页上面的部分对我来说并不完全清楚.假设攻击者没有其他系统访问权限,他们将不会重启系统.

解决方法

不,你很安全.

如果我不得不猜测你对这个人工页面感到困惑的话,我会说这是警告部分.他们试图说的是,屏幕会话本身并不是锁定的,而是该特定终端上的实例.如果你留下攻击者可以以用户身份启动屏幕的shell,他们就可以访问你在锁定屏幕中运行的内容.

我不确定为什么这是一个场景.如果它是服务器,为什么不用SSH登录?如果它是台式机 – 为什么不运行xlock呢?

猜你在找的Linux相关文章