Date: Thu, 20 Feb 2014 20:42:40 +0000 From: Matthew Seaman <matthew@FreeBSD.org> To: freebsd-questions@freebsd.org Subject: Re: XFCE User Switching Message-ID: <530668C0.1070902@FreeBSD.org> In-Reply-To: <1392898096.682.39.camel@archlinux> References: <Pine.NEB.4.64.1402200346190.17819@sdf.lonestar.org> <20140220123026.5d10a4ea@X220.alogt.com> <1392898096.682.39.camel@archlinux>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --KPtrHR2pANSMmb65ak0fPo6eOxK3KmfCe Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 20/02/2014 12:08, Ralf Mardorf wrote: > On Thu, 2014-02-20 at 12:30 +0800, Erich Dollansky wrote: >> If you only want to start new programs under a different account, just= >> use su in an xterm. >=20 > Isn't for FreeBSD something like e.g. > xhost + > needed, assumed the OP want's to run a GUI app by another account? For > Linux it is. Please do not propagate the advice to use 'xhost +'. It's a really bad idea[*], along the lines of 'just chmod everything to world writable' -- letting just anyone connect to your X screen means that it becomes trivially easy for an attacker to snoop on anything you're doing including getting the text of any passwords you type in, etc. etc. Read, mark, learn and inwardly digest the xauth(1) man page, for learning how to grant the minimum necessary privilege is the first step towards righteous security. Matthew [*] Especially if your X server is network accessible, as it usually is by default. --=20 Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey --KPtrHR2pANSMmb65ak0fPo6eOxK3KmfCe Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.20 (Darwin) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQJ8BAEBCgBmBQJTBmjBXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2NTNBNjhCOTEzQTRFNkNGM0UxRTEzMjZC QjIzQUY1MThFMUE0MDEzAAoJELsjr1GOGkAT7lkP+wcYmJfd5nKVUqRwLAgu30Wl vrLOgDpzWpcmILyrt9KJAdMx5Bxdec8PpNDr8jdL28OhuYMTaAoqenjOru/+XXkN Dx2uUkSTwzaxALHVURPx60IBms3aAwxX1yV7WzCJ6bxXBXNLemyPRG7JNzuwFTwo uz2TabewgaWS+mNak+1+kGX8bsroaEnHxKrz39ptELFl7FbAhbqlvipu5aOyYIW2 DUF+2Tu/4Tnmlr0blylSiSh2AlWloQ7+h5EKacoRBWCM/hK3rkJami/Pj/+ckOsN S385AVMM1YuKbdWx211GABKgELwyV8nyvsAP4FnByijtKqPqt0Nrm0b1kptOQzaz L2+w51tSKu1kJkk/FYpblZvKzNdBHLgOk5iHqD8zsnv/CDsSYr0dBNv/mZYUM7n3 H3kplJvC/93lTjrn22nAvcuTv2WXGdWXsLpBnMp5IsjfyP0Y96HdxorOZKeKX5OW gy+DLA3W/HjuY19xVjWgMKmIW7cCrIu3bk2IfGeTZwp9b3dVSAUp5ru+1V2y5NZi BAak86g1nXdJMu69bTf+tAoAw7I//zKDHBAm4HBglrbmorsa78b3JmgpBF9UDTtk Azhi24NQkh4m/YWWan4JaXiMO+VYxCS7dvlucwQt3GRkkiGGSwibW1e7JsV6+L3F Ud1aXOSauT56jGI7wYSt =Rgpx -----END PGP SIGNATURE----- --KPtrHR2pANSMmb65ak0fPo6eOxK3KmfCe--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?530668C0.1070902>