Red Hat Bugzilla – Bug 33710
GDM with XDMCP on and changes to /dev/console owner
Last modified: 2007-04-18 12:32:25 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.76 [en] (X11; U; Linux 2.4.2-0.1.19 i686)
A misconfiguration in /etc/X11/gdm will cause users logging in remotely via
a gdm-managed XDMCP session to be given ownership of /dev/console
Steps to Reproduce:
1. On machine "victim", in /etc/X11/gdm/gdm.conf set "Enable=1" in the
[xdmcp] section. Restart gdm.
2. On machine "victim", log in through gdm as a normal user ("alice").
3. While logged in on a remote machine, `Xnest -query victim :1`.
4. In the Xnest session, log in through gdm to the "victim" machine as a
different user ("bob").
Actual Results: The second user ("bob") gets ownership of /dev/console,
even though he's not logging in locally.
Expected Results: The first (local) user ("alice") should have retained
ownership of /dev/console. This works properly when xdm has XDMCP turned
on and is used instead.
By default, XDMCP is turned off in gdm, so most users will not be
affected by this bug. However, it also applies to 7.0 (at least).
FIX to match xdm (and kdm?) behavior:
/etc/X11/gdm/PreSession/Default should be moved to
/etc/X11/gdm/PostSession/Default should be moved to
(/etc/X11/gdm/Init/Default is correct.)
Nalin says this should be fixed in usermode errata.
However, I've also removed the GiveConsole/TakeConsole scripts from the
gdm package; they should not be necessary. This is in gdm-22.214.171.124-9.