group video access hazards?

To: debian-security@lists.debian.org
Subject: group video access hazards?
From: "Tom Goulet (UID0)" <uid0@em.ca>
Date: Tue, 28 Oct 2003 07:12:53 +0000
Message-id: <[🔎] 20031028071253.GA9638@nova.vor.em.ca>
Mail-followup-to: debian-security@lists.debian.org

Hello,

I'm curious what a malicious user could do with access to the
framebuffer device via the </dev/fb0> device file.  Could a malicious
user see anything other than what's on his or her virtual console or X
session?

As it is I'm leaving ZGV set UID root on the theory that ZGV dropping
root privileges is more secure than it keeping group video privileges.

Thanks,
-- 
Tom Goulet				mail: uid0@em.ca
UID0 Unix Consulting			web:  em.ca/uid0/

Reply to:

Follow-Ups:
- Re: group video access hazards?
  - From: Russell Coker <russell@coker.com.au>
- Re: group video access hazards?
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Unidentified subject!
Next by Date: Re: group video access hazards?
Previous by thread: Unidentified subject!
Next by thread: Re: group video access hazards?
Index(es):
- Date
- Thread