Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_1

Bugtraq archives for 1st quarter (Jan-Mar) 1995: Re: safe logging xterm

Re: safe logging xterm

Adam Shostack (adambwh.harvard.edu)
Thu, 16 Mar 1995 19:09:05 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Anonymous the XXIIV: "Re: Cancel Subscription"
Previous message: TechnoIncaol.com: "Cancel Subscription"
In reply to: Robert Banz: "Re: safe logging xterm"
Next in thread: Valdis.Kletnieksvt.edu: "Re: safe logging xterm"

| > Yes, it leaves setuid on a program that is way too large.  Xterm tends
| > to be setuid so it can write to utmp.  Thats a bad reason to make a
| > large program setuid.
| 
| Hm.  Why not make utmp group "bob" writable, and make xterm setgid "bob"?
| 
| just an idea...  at least it cuts down on what they can do if they
| somehow 'hack' xterm...the get "bob" access...

	Several kind folks pointed out to me that Xterm is setuid so
it can chown the pty, not so it can write to utmp.

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
						       -Hume

Next message: Anonymous the XXIIV: "Re: Cancel Subscription"
Previous message: TechnoIncaol.com: "Cancel Subscription"
In reply to: Robert Banz: "Re: safe logging xterm"
Next in thread: Valdis.Kletnieksvt.edu: "Re: safe logging xterm"