Re: ssh authentication

To: debian-user@lists.debian.org
Cc: "Noah L. Meyerhans" <frodo@morgul.net>
Subject: Re: ssh authentication
From: Robert.Land@t-online.de (robert_wilhelm_land)
Date: Wed, 29 Nov 2000 16:38:09 +0100
Message-id: <[🔎] 3A2522E1.D7ABD58@csi.com>
Reply-to: rland@urbia.de
References: <200011281741_MC2-BC70-B5B8@compuserve.com>

"Noah L. Meyerhans" <frodo@morgul.net> wrote:

> On Tue, Nov 28, 2000 at 07:20:37PM +0100, robert_wilhelm_land wrote:
> > > As root in root's home directory, make .Xauthority a symbolic link to
> > > your normal user's .Xauthority file (or set the XAUTHORITY environment
> > > variable to the location of that file). Then you can just run X programs
> > > while inside 'su'.
> >
> > This works nicely - thank you very much!
> 
> No!  Don't do this!  By doing so you are lowering the security level of
> your machine down to your user account.  It's bad enough that security
> depends on a root account; it should *never* depend on a user account.

Lowering only the X11 root permissions or the permisions of all apps?

I tried to edit /etc/passwd by user "rland" and it did not work. So
file restrictions do not seem to be affected by root accessing
.Xauthority in the rland ~/.

Robert

Reply to:

Follow-Ups:
- Re: ssh authentication
  - From: "Noah L. Meyerhans" <frodo@morgul.net>

Prev by Date: Re: coping with a high-volume mailing list (like this one)?
Next by Date: Re: Debian Centralized Management
Previous by thread: Re: ssh authentication
Next by thread: Re: ssh authentication
Index(es):
- Date
- Thread