4 ptyas is a small su/sudo replacement which prevents TTY hijacking by starting
5 a new session with a separate terminal and proxying all input.
7 It must be run as root and changes the owner to the specified user name,
8 permanently dropping all root permissions.
10 For details about the possible attacks see
11 https://ruderich.org/simon/notes/su-sudo-from-root-tty-hijacking
13 ptyas is licensed under AGPL version 3 or later.
20 - UNIX 98 pseudoterminals
26 ptyas <user> [<command...>]
28 If no command is given, the user's shell is started. Otherwise the command is
29 executed (which is useful if the user's shell is disabled).
35 If you find any bugs not mentioned in this document please report them to
36 <simon@ruderich.org> with ptyas in the subject.
42 Written by Simon Ruderich <simon@ruderich.org>.
48 ptyas is licensed under AGPL version 3 or later.
50 Copyright (C) 2016-2019 Simon Ruderich
52 This program is free software: you can redistribute it and/or modify
53 it under the terms of the GNU Affero General Public License as published by
54 the Free Software Foundation, either version 3 of the License, or
55 (at your option) any later version.
57 This program is distributed in the hope that it will be useful,
58 but WITHOUT ANY WARRANTY; without even the implied warranty of
59 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
60 GNU Affero General Public License for more details.
62 You should have received a copy of the GNU Affero General Public License
63 along with this program. If not, see <https://www.gnu.org/licenses/>.