Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 22 Feb 2001 18:16:30 -0800
From:      Kris Kennaway <kris@obsecurity.org>
To:        "Albert Everett, Web International Inc." <aeverett@webintl.com>
Cc:        freebsd-stable@freebsd.org
Subject:   Re: Xserver won't start
Message-ID:  <20010222181630.A11548@mollari.cthul.hu>
In-Reply-To: <l03130304b6bb497a64f6@[209.248.144.126]>; from aeverett@webintl.com on Thu, Feb 22, 2001 at 04:56:20PM -0600
References:  <20010221210050.G66731@mollari.cthul.hu>; <20010221194958.A41180@telocity.com> <Pine.BSF.4.33.0102212053420.90228-100000@acs-24-154-27-53.zoominternet.ne <20010221210050.G66731@mollari.cthul.hu> <20010222135643.A92188@nihilist.org> <l03130304b6bb497a64f6@[209.248.144.126]>

next in thread | previous in thread | raw e-mail | index | archive | help

--5mCyUwZo2JvN/JJP
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Feb 22, 2001 at 04:56:20PM -0600, Albert Everett, Web International=
 Inc. wrote:
> Amen.
>=20
> >On Wed, Feb 21, 2001 at 09:00:50PM -0800, Kris Kennaway wrote:
> >>
> >> Don't do this; install the Xwrapper port instead -- the setuid bit was
> >> removed from the XFree86 in favour of the Xwrapper port for a reason
> >> (improved security).
> >
> >So why not make the XFree86-4 port depend on Xwrapper so confusion
> >like this can be avoided?

Because if you run X via xdm/kdm/wdm/etc you don't need it, and even
having Xwrapper doesn't completely remove the security risk (you still
have a setuid root binary which can only remove some potential sources
of exploit).  Read the message which explains this when you install
XFree86-4, please.

Kris

--5mCyUwZo2JvN/JJP
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE6lcf+Wry0BWjoQKURAi6sAJ9w7O3FIdyJDhYPQw3AfTw3KqeqJgCfTszz
WQrm/P19SUknIQG1O6ao99k=
=aomL
-----END PGP SIGNATURE-----

--5mCyUwZo2JvN/JJP--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010222181630.A11548>