• M
    [patch 1/2] audit: let userspace fully control TTY input auditing · 41126226
    Miloslav Trmac 提交于
    Remove the code that automatically disables TTY input auditing in processes
    that open TTYs when they have no other TTY open; this heuristic was
    intended to automatically handle daemons, but it has false positives (e.g.
    with sshd) that make it impossible to control TTY input auditing from a PAM
    module.  With this patch, TTY input auditing is controlled from user-space
    only.
    
    On the other hand, not even for daemons does it make sense to audit "input"
    from PTY masters; this data was produced by a program writing to the PTY
    slave, and does not represent data entered by the user.
    Signed-off-by: NMiloslav Trmac <mitr@redhat.com>
    Cc: Al Viro <viro@zeniv.linux.org.uk>
    Cc: David Woodhouse <dwmw2@infradead.org>
    Signed-off-by: NAndrew Morton <akpm@linux-foundation.org>
    Signed-off-by: NAl Viro <viro@zeniv.linux.org.uk>
    41126226
tty_audit.c 7.1 KB