Lack of SAK isn't a security issue in itself since the account or
software that is able to write to the user's files must somehow be
compromised. SAK is a hardening mechanism that can be employed to
increase the security of a machine. Unfortunately, as implemented it is
not something that we can en
Can you please explain why this is not a security issue? It is very easy
to exploit, it doesn't need complex exploit technology like buffer
overflows. Just very simple terminal UI programming.
And please change back the summary to what it originally was. This bug
is about the fact that Ubuntu shou
Thank you for using Ubuntu and reporting a bug. This is actual on the
security team's roadmap: https://wiki.ubuntu.com/SecurityTeam/Roadmap.
** Summary changed:
- "sudo" and "logout" is broken by design and its usage should be discouraged
+ Ubuntu should implement the secure attention key
** Vis