SysRq should be limited by default like openSUSE

Still here in Hardy.

Version information:
Ubuntu hardy (development branch)
linux-image-2.6.24-12-generic 2.6.24-12.22

[This is an automated message. Apologies if it has reached you inappropriately.]

This bug was reported against the linux-meta package when it likely should have been reported against the linux package instead. We are automatically transitioning this to the linux kernel package so that the appropriate teams are notified and made aware of this issue. Thanks.

Hi sitsofe,

Please be sure to confirm this issue exists with the latest development release of Ubuntu. ISO CD images are available from http://cdimage.ubuntu.com/releases/ . Please then run following command from a Terminal (Applications->Accessories->Terminal). It will automatically gather and attach updated debug information to this report.

apport-collect -p linux-image-`uname -r` 194676

Also, if you could test the latest upstream kernel available that would be great. It will allow additional upstream developers to examine the issue. Refer to https://wiki.ubuntu.com/KernelMainlineBuilds . Once you've tested the upstream kernel, please remove the 'needs-upstream-testing' tag. This can be done by clicking on the yellow pencil icon next to the tag located at the bottom of the bug description and deleting the 'needs-upstream-testing' text. Please let us know your results.

Thanks in advance.

[This is an automated message. Apologies if it has reached you inappropriately; please just reply to this message indicating so.]

Still here in Karmic:

Version information:
Ubuntu 9.10 (karmic)
linux-generic-pae 2.6.31.14.27

Thank you for taking the time to report this bug and helping to make Ubuntu better. The issue that you reported is one that should be reproducible with the live environment of the Desktop CD of the development release - Natty Narwhal. It would help us greatly if you could test with it so we can work on getting it fixed in the next release of Ubuntu. You can find out more about the development release at http://www.ubuntu.com/testing/ . Thanks again and we appreciate your help.

[Expired for linux (Ubuntu) because there has been no activity for 60 days.]

Still here Natty.

Version information:
Ubuntu 11.04 (natty)

Steps to reproduce:
1. Start Ubuntu.
2. Press ctrl-alt-f2.
3. Press Alt-Sysrq-9.
4. Press Alt-Sysrq-p

Expected results:
Nothing to happen.

Actual results:
Current kernel stack trace and register information is printed to the screen.

If you are a bug helper about to mark this bug incomplete please can you try these steps - they are relatively quick to do and should work on all systems with a display. Thank you!

This bug is missing log files that will aid in diagnosing the problem. From a terminal window please run:

apport-collect 194676

and then change the status of the bug to 'Confirmed'.

If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.

This change has been made by an automated script, maintained by the Ubuntu Kernel Team.

Reset to "Confirmed". This bug report does not require any logs. It is explained in the original report.

This is a security issue as someone can use sysrq to disable screen locking and cause other problems.

Debian uses "438" by default in squeeze and newer. Here are some relevant bugs,

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=562884
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=564080

The bitmask description documented at
https://secure.wikimedia.org/wikipedia/en/wiki/Magic_SysRq_key#Disabling_SysRq_key

As Matt points out, SysRq+F seems to allow a user to kill processes they shouldn't be able to, including (possibly) the screensaver. So yeah, I'd say this default is a security problem.

This is fixed in quantal now.