ptyas (0.1, 2019-12-18)

Last updated 2019-12-19

ptyas is a minimal su/sudo replacement which prevents TTY hijacking by starting a new session with a separate terminal and proxying all input. It will either spawn the user’s default shell or run the given command.

It must be run as root and changes the owner to the specified user name, permanently dropping all root permissions.


ptyas is licensed under AGPL version 3 or later.

Requirements

  • C99 compiler

  • UNIX 98 pseudoterminals

Supported Systems

Tested on Debian GNU/Linux and OpenBSD, but should work (with some minor changes) on any Unix system with pseudoterminals.

Usage

ptyas <user> [<command...>]

If no command is given, the user’s shell is started. Otherwise the command is executed (which is useful if the user’s shell is disabled).

Download

Current development happens in the git repository (also browsable as Gitweb):

git clone https://ruderich.org/simon/ptyas/ptyas.git

Last updated 2019-12-19

Impressum Datenschutzerklärung