From owner-cvs-ports Wed Mar 4 15:48:44 1998 Return-Path: Received: (from daemon@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA23881 for cvs-ports-outgoing; Wed, 4 Mar 1998 15:48:44 -0800 (PST) (envelope-from owner-cvs-ports) Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA23608; Wed, 4 Mar 1998 15:47:37 -0800 (PST) (envelope-from se@FreeBSD.org) From: Stefan Esser Received: (from se@localhost) by freefall.freebsd.org (8.8.8/8.8.5) id PAA07865; Wed, 4 Mar 1998 15:46:14 -0800 (PST) Date: Wed, 4 Mar 1998 15:46:14 -0800 (PST) Message-Id: <199803042346.PAA07865@freefall.freebsd.org> To: cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-ports@FreeBSD.ORG Subject: cvs commit: ports/x11/kdebase/patches patch-ai Sender: owner-cvs-ports@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk se 1998/03/04 15:46:14 PST Added files: x11/kdebase/patches patch-ai Log: Fix kfmsu2 (which actually should *never* be used on a multi-user system!) The original version was not compatible with the FreeBSD version of "su" (it assumed that "su - -c CMD" executed CMD as root), and it required root to have a POSIX shell as login shell (not a C shell). The original "xhost +local:root" could mislead the user to assume that only root was given permission to access hist X11 display, but the user parameter is ignored by xhost (as of XFree86 3.3.1). This allows *every* user on the local system to grab all keypresses or screen contents while kfmsu2 has not run to completion. Starting several instances of kfmsu and leaving one will revoke access to the X11 display to all others ... In fact, kfmsu might be considered *that* broken by design, that it should not be installed, but it's a part of kdebase and I do not want to disable it in case somebody has a legitimate use for it ... The non-functionality of kfmsu was pointed out by Glenn Johnson.