Re: shutdown from gnome logout dialog

To: debian-gtk-gnome@lists.debian.org
Subject: Re: shutdown from gnome logout dialog
From: Sebastian Kapfer <sebastian_kapfer@web.de>
Date: Tue, 16 Sep 2003 13:17:04 +0200
Message-id: <[🔎] pan.2003.09.16.11.17.03.881946@gammaray.dyndns.org>
References: <[🔎] 3F660DBF.6000107@free.fr> <[🔎] 1063655186.844.79.camel@bilbo.pemas.net> <[🔎] 20030915204052.GA11386@iliana>

On Mon, 15 Sep 2003 23:30:30 +0200, Sven Luther wrote:

> On Mon, Sep 15, 2003 at 09:46:26PM +0200, Carlos Perelló Marín wrote:
>
>> It's not a bad idea but it has some security issues. What happens if an
>> application executes "touch $HOME/.gdm-reboot"? the user does not want
>> reboot the machine but a virus/trojan could do it without problems
> 
> What about gdm passing to gnome-session a magic number or something, and
> gdm would only reboot/halt if this same magic number would be found in
> the .gdm-reboot/halt file ?
> 
> As the magic number will only be known to gdm and gnome-session, it
> should be secure, unless your random number generator is compromised,
> but in these case, i suspect you are in deeper trouble anyway.

gdm could just pass on a file handle (a pipe) to the X session script
which passes that on to gnome-session. gnome-session could then use the
inherited pipe to communicate with gdm.

Not really a clean design, but it doesn't use any files :-)

-- 
Best Regards,   |   Hi! I'm a .signature virus. Copy me into
 Sebastian      |   your ~/.signature to help me spread!

Reply to:

References:
- shutdown from gnome logout dialog
  - From: Thomas Morin <t0m@free.fr>
- Re: shutdown from gnome logout dialog
  - From: Carlos Perelló Marín <carlos@pemas.net>
- Re: shutdown from gnome logout dialog
  - From: Sven Luther <sven.luther@wanadoo.fr>

Prev by Date: Re: shutdown from gnome logout dialog
Next by Date: Re: shutdown from gnome logout dialog
Previous by thread: Re: shutdown from gnome logout dialog
Next by thread: Re: shutdown from gnome logout dialog
Index(es):
- Date
- Thread