Around 16 o'clock on Mar 29, Branden Robinson wrote: > Do you know off the top of your head why this is? I'm not even sure > what to grep for in the sources. sleep (5); There is a man-in-the-middle attack (among many other options) possible if someone creates a /tmp/.X11-unix (or /tmp/.ICE-unix) directory owned by someone other than root. But, instead of failing, the xtrans library prints out a nice warning message and then sleep for 5 seconds. Too bad the warning message is generally discarded by the scripts... http://freedesktop.org/cgi-bin/bugzilla/show_bug.cgi?id=297 -keith
Attachment:
pgp0e_FYVZj1d.pgp
Description: PGP signature