Package: postgresql-8.1 Severity: normal When started from an administrator terminal the postgresql daemon inherits the administrator's terminal as the controlling tty. This means that the daemon if compromised could be used to attack the administrator by injecting terminal input.
To prevent this the daemon should call setsid() as part of the startup process. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14.1-se Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
