Date: Fri, 10 Jul 1998 16:53:44 -0700 (PDT) From: Jake Hamby <jehamby@manta.jpl.nasa.gov> To: Michael Richards <026809r@dragon.acadiau.ca> Cc: security@FreeBSD.ORG Subject: Re: RootRunner (admin GUI w/o security holes?) Message-ID: <Pine.GSO.3.96.980710164953.3860H-100000@manta> In-Reply-To: <199807102336.UAA08298@dragon.acadiau.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 10 Jul 1998, Michael Richards wrote: > Why not just use ssh to forward your root x connections via an encrypted > connection. All of your problems go away. You are even secure from network > sniffers because the entire data stream is encrypted. Well, I definitely want to support ssh to allow secure remote administration (where it would replace su or sudo in the scheme I described), but I'm really loath to run any part of the GUI as uid 0, if it's at all possible to avoid. While it's probably not a security hole, per se, my biggest problem is the one I already mentioned of how to start the program from the "start menu" of your favorite windowmanager, without having to pop up an ugly xterm window to ask for the root password. -Jake To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.3.96.980710164953.3860H-100000>