Re: Re: su/sudo cannot X

To: jhasler@debian.org
Cc: debian-user@lists.debian.org
Subject: Re: Re: su/sudo cannot X
From: Lei Kong <lei.kong@gmail.com>
Date: Thu, 19 Jan 2006 15:00:43 -0500
Message-id: <[🔎] 43CFEFEB.40103@gmail.com>
In-reply-to: <[🔎] 87k6cwbzyi.fsf@toncho.dhh.gt.org>
References: <[🔎] 87k6cwbzyi.fsf@toncho.dhh.gt.org>

As about the security concern, why is it more secure not to let root log
into X than otherwise? why is not letting root start X client after
su/sudo by default a good policy?


Because neither X nor any X applications are secure.

True, root X session over network is insecure,
but how about using locally? the restrictions
could have been set for remote usage only.
Why is it even enforced for local usage?
What is the security concern for local
root X session? can u give an example?

thanks.

Lei

Reply to:

Follow-Ups:
- Re: su/sudo cannot X
  - From: John Hasler <john@dhh.gt.org>

References:
- Re: su/sudo cannot X
  - From: John Hasler <jhasler@debian.org>

Prev by Date: public key in apt get unstable/testing not valid
Next by Date: Re: Crashes and lock-ups in Sarge
Previous by thread: Re: su/sudo cannot X
Next by thread: Re: su/sudo cannot X
Index(es):
- Date
- Thread