Re: setuid/setgid binaries contained in the Debian repository.

To: debian-devel@lists.debian.org
Subject: Re: setuid/setgid binaries contained in the Debian repository.
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 19 Aug 2003 11:01:35 -0400
Message-id: <[🔎] 20030819150135.GB28497@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20030818221433.GA1621@cs78143044.pp.htv.fi>
References: <[🔎] 20030810232349.GH23819@alcor.net> <[🔎] 200308110945.50230.josef@ggzgamingzone.org> <[🔎] 20030811085650.GA17898@evbergen.xs4all.nl> <[🔎] 20030811132842.GQ23819@alcor.net> <[🔎] 20030811140040.GA7413@evbergen.xs4all.nl> <[🔎] 20030811143347.GA15143@alcor.net> <[🔎] 20030811161310.GA11157@evbergen.xs4all.nl> <[🔎] 20030811171808.GK15143@alcor.net> <[🔎] 20030811185028.GC20650@evbergen.xs4all.nl> <[🔎] 20030818221433.GA1621@cs78143044.pp.htv.fi>

On Tue, Aug 19, 2003 at 01:14:33AM +0300, Richard Braakman wrote:

> This might be true for text-based games, though even they could reprogram
> the terminal in nasty ways.  Games that use X11, however, will need
> access to the user's X session, and that basically gives them free
> reign.  They'll be able to do fun things like listen to keypress events
> or paste text into an open xterm.
> 
> If you do find a way to run graphical games in a separate uid, then let
> me know -- I'll want to use that for my web browser :-)

xauth -f someplace-else generate $DISPLAY . untrusted

It breaks some applications, though.

-- 
 - mdz

Reply to:

References:
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Matt Zimmerman <mdz@debian.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Josef Spillner <josef@ggzgamingzone.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Matt Zimmerman <mdz@debian.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Matt Zimmerman <mdz@debian.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Matt Zimmerman <mdz@debian.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Richard Braakman <dark@xs4all.nl>

Prev by Date: LSB v1.9 Public Review
Next by Date: Re: is debian/control utf-8 clean?
Previous by thread: Re: setuid/setgid binaries contained in the Debian repository.
Next by thread: Re: setuid/setgid binaries contained in the Debian repository.
Index(es):
- Date
- Thread