From owner-freebsd-questions Thu Jul 25 13:22:43 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 863A837B400 for ; Thu, 25 Jul 2002 13:22:37 -0700 (PDT) Received: from vectors.cx (manifold.vectors.cx [64.163.147.229]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0A51743E42 for ; Thu, 25 Jul 2002 13:22:37 -0700 (PDT) (envelope-from monkey@vectors.cx) Received: from vectors.cx (015c28b82f4d5794aadc221402c45cbe@localhost [127.0.0.1]) by vectors.cx (8.12.4/8.12.4) with ESMTP id g6PKMs2e051117; Thu, 25 Jul 2002 13:22:54 -0700 (PDT) (envelope-from monkey@vectors.cx) Received: (from monkey@localhost) by vectors.cx (8.12.4/8.12.4/Submit) id g6PKMsmW051116; Thu, 25 Jul 2002 13:22:54 -0700 (PDT) (envelope-from monkey) Date: Thu, 25 Jul 2002 13:22:54 -0700 From: Adam Weinberger To: Peter Leftwich Cc: Adam Weinberger , Koroush Saraf , FreeBSD LIST Subject: Re: XFree86 runs as root but not as user! Message-ID: <20020725202254.GF50921@vectors.cx> References: <20020725190902.GL94707@vectors.cx> <20020725160827.V58623-100000@earl-grey.cloud9.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020725160827.V58623-100000@earl-grey.cloud9.net> X-Editor: Vim 6.1 http://www.vim.org X-Mailer: Mutt 1.5 http://www.mutt.org X-URL: http://www.vectors.cx http://www.crackula.com User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG uhm. ok. the wrapper allows users to get around a hurdle, yes. it enables them to run an suid binary without giving the users themselves suid permissions. the whole point is to improve security, as opposed to your solution of changing permissions on the X binary itself. and not every package has a manpage. if you want to know what a package is, look at its description file. /usr/ports/x11/wrapper/pkg-descr. and download the code and look at it. it's a very small app. and for the record, 'rehash' won't do anything to help you load manpages. -Adam >> (07.25.2002 @ 1311 PST): Peter Leftwich said, in 1.8K: << > On Thu, 25 Jul 2002, Adam Weinberger wrote: > > have you installed /usr/ports/x11/wrapper? -Adam > > Isn't there also an Xwrapper binary? Is the wrapper to which you refer > secure and bug-free? It sounds like it creates a situation where users > "get around" some kind of hurdle, rather than root simply chmod'ing some > dirs or binaries. By the way, can anyone explain the following?? > > # man wrapper > No manual entry for wrapper > # pkg_add -r wrapper > Fetching ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-4-stable/Latest/wrapper.tgz... Done. > # man wrapper > No manual entry for wrapper > # rehash > # man wrapper > No manual entry for wrapper > > How is a user expected to learn what this is and what it does? Thanks, > > > >> (07.25.2002 @ 1210 PST): Koroush Saraf said, in 0.7K: << > > > This is probably a trivial and old question, but I havn't found an answer yet. > > > > > > I just installed BSD 4.6 and can't get XFree86 to run as a user. > > > It works fine as root. So I figure some permission is not set correctly somewhere. > > > I tried to chmod 4755 on startx just to see what happens, and nothing exciting happened! > > > The error is below: Please help! and include this email address in the reply > > > > > > > Fatal server error: > > > > Cannot open log file "/var/log/XFree86.0.log" > > > > giving up. > > > > xinit: No such file or directory (errno 2): unable to connect to X server > > > > xinit: No such process (errno 3): Server error > > > > end of "XFree86 runs as root but not as user!" from Koroush Saraf << > > -- > > "Oh good, my dog found the chainsaw." > > -Lilo, "Lilo & Stitch" > > Adam Weinberger > > adam@vectors.cx > > http://vectors.cx > > -- > Peter Leftwich > President & Founder > Video2Video Services > Box 13692, La Jolla, CA, 92039 USA > +1-413-403-9555 > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > >> end of "Re: XFree86 runs as root but not as user!" from Peter Leftwich << -- "Oh good, my dog found the chainsaw." -Lilo, "Lilo & Stitch" Adam Weinberger adam@vectors.cx http://vectors.cx To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message