Re: How Debian Linux could be made more secure

To: debian-devel@lists.debian.org
Subject: Re: How Debian Linux could be made more secure
From: Mark Baker <mbaker@iee.org>
Date: Tue, 28 Apr 1998 16:26:50 +0100
Message-id: <[🔎] 19980428162650.B21692@aziraphale.pet.cam.ac.uk>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 19980428165045.A14460@sobolev.rhein.de>; from Thomas Roessler on Tue, Apr 28, 1998 at 04:50:45PM +0200
References: <[🔎] 19980428165045.A14460@sobolev.rhein.de>

On Tue, Apr 28, 1998 at 04:50:45PM +0200, Thomas Roessler wrote:
> Today, I reported two bugs in debian packages which
> install binaries suid root.  Both bugs were avoidable:

There's a third one too---we install xterm suid root, which isn't necessary
(the alternative is to use a wrapper program to do pty allocation and utmp
entry). This was mentioned on one of these lists a couple of months ago.

--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- How Debian Linux could be made more secure
  - From: Thomas Roessler <roessler@guug.de>

Prev by Date: Re: X and Window Mangers
Next by Date: CERT* VB-98.04: Vulnerabilities in xterm and Xaw
Previous by thread: Re: How Debian Linux could be made more secure
Next by thread: Re: How Debian Linux could be made more secure
Index(es):
- Date
- Thread