Re: coupe things RedHat does well and Debian should too

To: Jason Gunthorpe <jgg@ualberta.ca>
Cc: Sergey V Kovalyov <sqk0316@SCIRES.ACF.NYU.EDU>, debian-devel@lists.debian.org
Subject: Re: coupe things RedHat does well and Debian should too
From: Ben Gertzfield <che@debian.org>
Date: 05 May 2000 12:48:40 -0700
Message-id: <[🔎] yttn1m47p7r.fsf@gilgamesh.cse.ucsc.edu>
In-reply-to: Jason Gunthorpe's message of "Fri, 5 May 2000 13:41:30 -0600 (MDT)"
References: <[🔎] Pine.LNX.3.96.1000505133838.16257C-100000@wakko.deltatee.com>

>>>>> "Jason" == Jason Gunthorpe <jgg@ualberta.ca> writes:

    Jason> This is also crazy. If you su to root the best thing to do
    Jason> is to set XAUTHORITY=/home/foo/.Xauthority. If you su to
    Jason> another user the sane thing to do is to use ssh and secure
    Jason> X forwarding. Otherwise you leak your X cookie to
    Jason> potentially evil users.

mod_xauth isn't this dumb; it only forwards the cookie when su'ing
from a non-root user to root (unless you configure it to do
otherwise.)

Ben

-- 
Brought to you by the letters C and Y and the number 10.
"I'm with insurance."
Debian GNU/Linux maintainer of Gimp and GTK+ -- http://www.debian.org/

Reply to:

References:
- Re: coupe things RedHat does well and Debian should too
  - From: Jason Gunthorpe <jgg@ualberta.ca>

Prev by Date: Re: coupe things RedHat does well and Debian should too
Next by Date: Re: ITP: xpenguins
Previous by thread: Re: coupe things RedHat does well and Debian should too
Next by thread: Re: coupe things RedHat does well and Debian should too
Index(es):
- Date
- Thread