Re: install screensaver with setuid root

To: debian-user@lists.debian.org
Subject: Re: install screensaver with setuid root
From: John Hasler <john@dhh.gt.org>
Date: 05 May 2001 12:42:36 -0500
Message-id: <[🔎] 873daj1ylv.fsf@toncho.dhh.gt.org>
In-reply-to: Alex Suzuki's message of "Sat, 5 May 2001 19:15:14 +0200"
References: <[🔎] 20010505141335.A406@asuzuki.dyndns.org> <[🔎] 87heyz27la.fsf@toncho.dhh.gt.org> <[🔎] 20010505191514.A376@asuzuki.dyndns.org>

I wrote:
> Don't.  X programs should not be setuid root.

Alex Suzuki writes:
> Why?

Even if the application itself is free of buffer overflows and such you
would be granting root access to wads of unaudited and buggy library code.
-- 
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI

Reply to:

Follow-Ups:
- Re: install screensaver with setuid root
  - From: Alex Suzuki <asuzuki@bluewin.ch>

References:
- install screensaver with setuid root
  - From: Alex Suzuki <asuzuki@bluewin.ch>
- Re: install screensaver with setuid root
  - From: John Hasler <john@dhh.gt.org>
- Re: install screensaver with setuid root
  - From: Alex Suzuki <asuzuki@bluewin.ch>

Prev by Date: a printer for Linux
Next by Date: png problems
Previous by thread: Re: install screensaver with setuid root
Next by thread: Re: install screensaver with setuid root
Index(es):
- Date
- Thread