On Mon, Jul 31, 2000 at 03:07:38AM +0000, Jim Breton wrote: > On Sat, Jul 29, 2000 at 02:41:51PM -0800, Ethan Benson wrote: > > we we could just fix the DoS in gpm, no? > > Presumably so, though I'm not sure how the internals of gpm work... it > is conceivable that any data written to that socket in the right format > (or whatever) would be read as valid by the gpm process. Over my head! > ;) But the principle of "minimum permissions necessary" would still be > worth employing, assuming it could be done without a significant > negative impact on the operation of the software.... there is another point, how necessary is it for gpm to run as root? -- Ethan Benson http://www.alaska.net/~erbenson/
Attachment:
pgpFqUz1nAKBN.pgp
Description: PGP signature