freenx

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On Tue, 2006-01-24 at 15:34, Maciej ?enczykowski wrote:

> The nxserver binary 
> could be setuid and/or setgid 'nx' thus granting it the necessary rights, 
> it could grab whatever special stuff nx is allowed to do and drop them or 
> fork to a child without them to allow the parent to clean up afterwards.

...

> Do you feel safe having anybody 
> capable of ssh'ing into nx@yourmachine?  You sure there are no bugs to 
> exploit in the nxserver 'shell'

Wasn't this the same binary you just suggested making setuid - but now
you don't trust it ???  Please comment again after reading the link I
just posted.

-- 
  Les Mikesell
    lesmikesell@xxxxxxxxx
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux