Re: bug in xauth
Re: bug in xauth
- Subject: Re: bug in xauth
- From: "Cook, Rich" <email@hidden>
- Date: Sat, 08 Sep 2012 00:42:18 +0000
- Thread-topic: bug in xauth
X11 won't stop me, but it will stop others from accessing my X server, and if I'm the only one on the server, it's secure.
On Aug 24, 2012, at 1:06 PM, Allen Bennett wrote:
> I think you miss the point of Rich. He doesn't intend to actually log in as "root" he plans to sudo. So, as long as he is an sudoer on the machine he is logging on to,he will be able to do so over ssh. how would X11 stop him once he has acquired root privileges though sudo?
> -Allen Bennett
>
> < Too many fundamentalist Christians, not enough lions.>
>
>
>
>
> On Aug 24, 2012, at 1:44 PM, Jeremy Huddleston Sequoia <email@hidden> wrote:
>
>>> Very good point, thanks!!! Unless your X server does not accept connections over the network, or there are other mitigations in place! X11 == "security hole" it's true.
>>
>> Right, which is why those vulnerability points are disabled by default in XQuartz.
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> X11-users mailing list (email@hidden)
>
> This email sent to email@hidden
--
✐Richard Cook
✇ Lawrence Livermore National Laboratory
Bldg-453 Rm-4024, Mail Stop L-557
7000 East Avenue, Livermore, CA, 94550, USA
☎ (office) (925) 423-9605
☎ (fax) (925) 423-6961
---
Information Management & Graphics Grp., Services & Development Div., Integrated Computing & Communications Dept.
(opinions expressed herein are mine and not those of LLNL)
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden