Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to lock own console when idle?
Top Forums Programming How to lock own console when idle? Post 302256154 by otheus on Saturday 8th of November 2008 08:57:05 AM
Old 11-08-2008
Nice program! A couple of bugs:
Code:
system("clear");

Probably a bad idea to do inside a signal handler. Also, why, other than to annoy the user. If it's to hide what the user was doing, I doubt this will prevent the terminal's scroll-back from working.

Code:
    if(idle_time == input_idle) {

You really need greater-than-or-equal to here. You cannot guarantee that the signal handler will be invoked every second. Oh, and that reminds me:
Code:
while(1) sleep(1);

You just need sleep() here. In the C library and system calls, sleep does not take an argument, as it does with perl and the shell.

And last, but definitely not least: an attacker could crash the program by entering more than 20 characters into the password prompt. You Using scanf() and strcmp() here are really bad ideas. You should use fgets() and strncmp() to ensure that at most N characters are read into the stream.

There are other improvements to be made, such as turning off echo on the input stream so that typed characters are not displayed, and such as using PAM or the getent() calls to verify the user's own password (otherwise EVERY user could figure this out). If you do install it as-is, turn off the read bit on the executable. Otherwise, one could get the password with:
Code:
strings  your-program-path

 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

how to lock keyboard without using lock command

how can I lock my keyboard while I'm away from the computer without using lock command. What other commands gives me the option to lock keyboard device? thanks (7 Replies)
Discussion started by: dianayun
7 Replies

2. Solaris

CPU idle

hi when should we consider that CPU is loaded? When it is 100% idle or 0%idle?? tx (4 Replies)
Discussion started by: melanie_pfefer
4 Replies

3. UNIX for Advanced & Expert Users

console /dev/console get image

We are using software (Pegasys) which runs on SunOS 5.8 and reads images from a Philips nuclear camera. The software is designed to run from the console. I need to be able to capture the images it produces on the display. The caveat is that I cannot use the X Windows display because the X Server... (3 Replies)
Discussion started by: sreyes27
3 Replies

4. UNIX for Advanced & Expert Users

idle time again

I need to find the idle time on a machine in the manner: How long time ago somebody did the last action with mouse or keyboard? Unfortunately "w" doesn't do this. It produced the following output on a machine a user was actually working on with an application: 15# w 15:55:28 up 15 days, ... (1 Reply)
Discussion started by: elbrand
1 Replies

5. UNIX for Dummies Questions & Answers

Windows to Linux remote console using VNC brings up blank console screen with only mouse pointer

:confused:Hi This was installed on the Linux box a few weeks back by a guy that no longer works for us. All worked fine until last week. Now when we connect its just a blank screen with no icons. I get a whole bunch of errors when starting the service too: Tue Feb 23 14:29:45 2010 ... (1 Reply)
Discussion started by: wbdevilliers
1 Replies

6. Red Hat

Security Question: Lock after invalid login, Session Lock and Required Minimum Password Length

Hello all, If anyone has time, I have a few questions: How do I do the following in Linux. We are using Red Hat and Oracle Enterprise Linux, which is based on Red Hat too. 1. How to lock the account after a few (like 3) invalid password attempts? 2. How do you lock a screen after 30... (1 Reply)
Discussion started by: nstarz
1 Replies

7. UNIX for Dummies Questions & Answers

lock the console after 5 minutes of inactivity.

How would i force The server console to be locked automatically after 5 minutes ? I want it to happen for X as well as terminal session of the machine. My Linux distribution details. LSB Version: :core-3.1-ia32:core-3.1-noarch:graphics-3.1-ia32:graphics-3.1-noarch Distributor ID:... (11 Replies)
Discussion started by: pinga123
11 Replies

8. UNIX for Dummies Questions & Answers

IP Console Vs Serial console.

Hi Gurus, Can some one explain me the difference between a IP console and a serial console. (1 Reply)
Discussion started by: rama krishna
1 Replies

9. UNIX for Advanced & Expert Users

Testing privileges -lock lockfile /var/lock/subsys/..- Permission denied

Hi all, I have to test some user priviliges. The goal is to be sure that an unauthorized user can't restart some modules (ssh, mysql etc...). I'm trying to automate it with a shell script but in same cases I got the syslog broadcast message. Is there any way to simply get a return code... (3 Replies)
Discussion started by: Dedalus
3 Replies

10. HP-UX

Idle sessions.

What kind of problems can be faced if any session which connects to unix server is open for longer time? How to find out from how much time that session is idle? :) (1 Reply)
Discussion started by: anandgodse
1 Replies

LEARN ABOUT REDHAT

vlock

VLOCK(1)						      General Commands Manual							  VLOCK(1)

NAME

       vlock - Virtual Console lock program

SYNOPSIS

       vlock

       vlock [ -a,--all ] [ -c,--current ] [ -h,--help ] [ -v,--version ]

DESCRIPTION

       vlock  is  a  program  to lock one or more sessions on the Linux console.  This is especially useful for Linux machines which have multiple
       users with access to the console.  One user may lock his or her session(s) while still allowing other users to use the system on other vir-
       tual consoles.  If desired, the entire console may be locked and virtual console switching disabled.

       By  default,  only  the	current  VC  (virtual  console)  is locked.  With the -a,-all option all VCs are locked.  The locked VCs cannot be
       unlocked without the invoker's password or the root password.  The root password will always be able to unlock any or all  sessions.   And,
       for  the  paranoid,  vlock makes it a trying experience for those attempting to guess the password, so unauthorized access to session(s) is
       highly unlikely.

       Please note that it is entirely possible to completely lock yourself out of the console with the -a,--all option  if  you  cannot  remember
       your  password!	Unless you are able to kill vlock by logging in remotely via a serial terminal or network, a hard reset is the only method
       of ``unlocking'' the display.

       vlock works for console sessions primarily.  However, there is support for trying to lock non-console sessions as well,	but  that  support
       has not been well tested.

OPTIONS

       -a,--all

	      Lock all console sessions and disable VC switching.

       -c,--current

	      Lock the current session (this is the default).

       -h,--help

	      Print a brief help message.

       -v,--version

	      Print the version number of vlock.

AUTHOR

       Michael K. Johnson <johnsonm@redhat.com>

Linux User's Manual						    16 May 1996 							  VLOCK(1)
All times are GMT -4. The time now is 05:46 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy