And PS, thanks for the elaboration!
On 11/18/20 7:55 PM, Judah Milgram wrote:
> On 11/18/20 10:04 AM, Moshe M. Katz wrote:
>> I believe the intent here is to protect non-GUI console sessions,
>> because they do not have a screensaver that can lock.
>
> Makes sense. More than once I've flipped over to a non-X virtual console
> to do one thing after another, and forgotten to log out before flipping
> back to X.
>
> But the way they do it, it gets exported from your first login shell on
> down, and it's set readonly, so you can't unset it. So if you set up
> some work in an xterm, and get distracted for 10 minutes (or work in
> another xterm for 10 minutes), the xterm will silently disappear with no
> warning. In fact, for the first week after it started, I was scouring
> the logs trying to figure out why my xterms were crashing.
>
> Maybe there's a way to test whether the shell is starting up at a console.
>
> Peter's solution (zsh) works and I'm finding zsh pretty cool, to boot.
>
> Judah
>
>>
>> The primary purpose of this is probably for servers, not desktops, but
>> even desktops can be used in a console session by changing which virtual
>> console you are using (the GUI is usually on console 7). You can switch
>> consoles by pressing Ctrl+Alt+F{1-7}. (The "Ctrl" is only necessary when
>> you are in the GUI; if you are already in a non-GUI console, you can
>> just use Alt+F{1-7}.)
>>
>> Moshe
>>
>> --
>> Moshe Katz
>> mmk...@umd.edu <mailto:mmk...@umd.edu>
>> (301) 867-3732
>>
>> <http://stackexchange.com/users/440421>
>>
>>
>> On Wed, Nov 18, 2020 at 8:51 AM Judah Milgram <milg...@cgpp.com
>> <mailto:milg...@cgpp.com>> wrote:
>>
>> Indirectly related to the bash question, my network overlords have
>> implemented this directive:
>>
>>
>> https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2018-11-28/finding/V-72223
>>
>> Short version: export TMOUT=600 in /etc/profile, and set it read only.
>>
>> My question: is this a real security issue? How can the bad guy "take
>> control" of a console session, without sitting down at my computer?
>> Wouldn't a screen locker serve just as well?
>>
>> Or is this only about network connections?
>>
>> And what's a "management session"?
>>
>> Grateful for any enlightenment.
>>
>> thanks!
>> Judah
>>
>> --
>> Judah Milgram
>> milg...@cgpp.com <mailto:milg...@cgpp.com>
>> 301-257-7069
>>
>> You received this email because you are subscribed to the UM Linux
>> User's Group (UM-LINUX) mailing list. If you would like to
>> unsubscribe from this list, simply send an email to
>> lists...@listserv.umd.edu <mailto:lists...@listserv.umd.edu> with
>> the message signoff UM-LINUX in the body.
>>
>> You received this email because you are subscribed to the UM Linux
>> User's Group (UM-LINUX) mailing list. If you would like to unsubscribe
>> from this list, simply send an email to lists...@listserv.umd.edu with
>> the message signoff UM-LINUX in the body.
>
>
--
Judah Milgram
milg...@cgpp.com
301-257-7069
You received this email because you are subscribed to the UM Linux User's Group
(UM-LINUX) mailing list. If you would like to unsubscribe from this list,
simply send an email to lists...@listserv.umd.edu with the message signoff
UM-LINUX in the body.
