[4106] in bugtraq
Re: libX11
daemon@ATHENA.MIT.EDU (David Holland)
Fri Feb 28 01:42:56 1997
Date: Thu, 27 Feb 1997 22:55:00 -0500
Reply-To: David Holland <dholland@EECS.HARVARD.EDU>
From: David Holland <dholland@EECS.HARVARD.EDU>
X-To: abelits@PHOBOS.ILLTEL.DENVER.CO.US
To: BUGTRAQ@netspace.org
In-Reply-To: <Pine.LNX.3.95.970227161251.3306A-100000@phobos.illtel.denver.co.us> from "Alex Belits" at Feb 27,
97 06:14:46 pm
> > So instead I wrote the following wrapper, and used it to wrap xload, xterm
> > and xconsole. My wrapper, and the SNI advisory, included below.
>
> Simplier workaround will be just to remove setuid bit. xterm won't
> write utmp entries or capture console messages (no big loss),
If you don't make xterm setuid root it can't chown the tty, which is a
major security hazard itself.
--
- David A. Holland | VINO project home page:
dholland@eecs.harvard.edu | http://www.eecs.harvard.edu/vino
