Re: coupe things RedHat does well and Debian should too

To: debian-devel@lists.debian.org
Cc: debian-devel@lists.debian.org
Subject: Re: coupe things RedHat does well and Debian should too
From: md@linux.it (Marco d'Itri)
Date: Sun, 7 May 2000 17:40:15 +0200
Message-id: <[🔎] 20000507174015.B1185@wonderland.linux.it>
In-reply-to: <[🔎] Pine.LNX.3.96.1000505133838.16257C-100000@wakko.deltatee.com>; from jgg@ualberta.ca on Fri, May 05, 2000 at 01:41:30PM -0600
References: <[🔎] Pine.LNX.3.96.1000505133838.16257C-100000@wakko.deltatee.com>

On May 05, Jason Gunthorpe <jgg@ualberta.ca> wrote:

 >This is really dangerous because anyone who logs into the console can
 >create a setgid auido/cd/whatever executable and always recover their
 >privilages.
Really?

/dev/hda8 on /home type ext2 (rw,check=none,nosuid)
/dev/hda9 on /var type ext2 (rw,check=none,nosuid)

 >This is also crazy. If you su to root the best thing to do is to set
 >XAUTHORITY=/home/foo/.Xauthority. If you su to another user the sane thing
Can you explain with more details why pam_xauth is a vulnerability?

-- 
ciao,
Marco

Reply to:

Follow-Ups:
- Re: coupe things RedHat does well and Debian should too
  - From: Decklin Foster <fosterd@hartwick.edu>

References:
- Re: coupe things RedHat does well and Debian should too
  - From: Jason Gunthorpe <jgg@ualberta.ca>

Prev by Date: Re: Does potato's dbootstrap have a 2GB disk limit?
Next by Date: ITP: cassowary
Previous by thread: Re: coupe things RedHat does well and Debian should too
Next by thread: Re: coupe things RedHat does well and Debian should too
Index(es):
- Date
- Thread