Re: Debian X package shouldn't install XDM by default
On Mon, Apr 16, 2001 at 07:01:25PM +0400, Ilya Martynov wrote:
>
> CI> Could somebody, please, enlighten me!
> CI> I've never been able to understand what the advantage of XDM (and the
> CI> other XDM alternatives) is, over a console:
>
> CI> mybox login: me
> CI> Password:
> CI> me@mybox:~> startx
>
>
> CI> What's the use of all that XDM (and the like) extra cruft? The
> CI> diffrence, as I see it, is 6 letters and a ^M. My recommendation has
> CI> always been the above. But I want to see the light :)
>
> One advantage is better security. You don't need suid X server
> binary. X server needs root right to be able to work with you graphic
> card. If you use xdm it starts X server itself. Because xdm runs as
> root it can start X server as root without making X server binary
> suid. If you start X server via startx your X server binary have to be
> suid.
I don't see an advantage there, if you have to run xdm as root, then your security can be compromised by xdm.
>
> Another advantage is that you can have more fine control about who can
> run X. If you don't have suid X server binaty usual users can't use
> 'startx' to start X ourselves. So you can put your restrictions via
> xdm configs.
I agree with that. But when you are installing debian that is not very useful. And does not justify having xdm installed *by default*
>
> Another advantage is usage in network environment. XDM can provide
> graphical remote login for X servers running on others boxes.
>
> Probably there are exist other reasons why XDM is needed I've forgot
> to mention.
> --
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> | Ilya Martynov (http://martynov.org/) |
> | GnuPG 1024D/323BDEE6 D7F7 561E 4C1D 8A15 8E80 E4AE BE1A 53EB 323B DEE6 |
> | AGAVA Software Company (http://www.agava.com/) |
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
--
Pedro Larroy Tovar. PiotR | http://omega.resa.es/piotr/
piotr@omega.resa.es
Reply to: