Security issue in Terminal

Kevin Chadwick ma1l1ists at yahoo.co.uk
Thu Mar 8 12:49:23 CET 2012


On Wed, 7 Mar 2012 23:49:45 +0100
Guido Berhoerster wrote:

> Switching to xterm will not gain you any additional security as
> the scrollback memory can be swapped out and thus end up on disk,
> too. If you deal with any sensitive documents where that becomes
> an issue you need to encrypt your filesystems, everything else is
> just eyewash and pseudosecurity.

You mean encrypting your swap will help a little but is in fact less
secure than xterm using memory if you turn the power off at the plug
when you shutdown. Sensitive stuff shouldn't be echoed anyway but that
is no excuse for this bug which may reduce permissions to world
readable for example.


More information about the Xfce mailing list