Hi all, I have one question about Secure Attention Key(SAK) in Solaris:
Why solaris does not implement SAK for trusted path in console mode? My current understanding is that we can log into non-global zone from "command line login" without X system if there is a trusted path mechanism. And the trusted path can be invoked by SAK sequence. Is this right? Your comments are really appreciated. During working on hot key sequences for virtual console switching, I'm thinking whether we can have a solution for un-remapped sequences for secure purpose or not. If the sequence can not be remapped, does it mean we can take advantage of the implementation for SAK sequence? I suppose there should be other requirements for SAK. Could you please please give me some clues or reference? Thanks so much! From google, we can easily find out the description for SAK in Linux kernel, and which also mentioned that SAK in Linux have not meet C2 requirements without clear reason. Regards, Lingbo
