From owner-freebsd-security  Thu Dec 17 14:45:05 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA28818
          for freebsd-security-outgoing; Thu, 17 Dec 1998 14:45:05 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from zeus.tds.edu (zeus.tds.edu [38.149.131.15])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA28809
          for <freebsd-security@FreeBSD.ORG>; Thu, 17 Dec 1998 14:44:58 -0800 (PST)
          (envelope-from willow@tds.edu)
Received: from zeus.tds.edu (willow@zeus.tds.edu [38.149.131.15])
	by zeus.tds.edu (8.9.1a/8.9.1a) with ESMTP id RAA00282;
	Thu, 17 Dec 1998 17:44:22 -0500 (EST)
Date: Thu, 17 Dec 1998 17:44:22 -0500 (EST)
From: Willow  <willow@tds.edu>
To: Frank Tobin <ftobin@bigfoot.com>
cc: FreeBSD-security Mailing List <freebsd-security@FreeBSD.ORG>
Subject: Re: Limiting which users can login via xdm
In-Reply-To: <Pine.BSF.4.05.9812112340570.3250-100000@isr3277.urh.uiuc.edu>
Message-ID: <Pine.BSF.4.05.9812171742211.29966-100000@zeus.tds.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

We just chgrp'd the X11 binaries to a group called xusers and remove world
read/execute bit from X11R6/bin and added any users that we want to be
able to use X to /etc/group

-- 
Willow <willow@tds.edu>
http://www.tds.edu/~willow
icq: 19051309 (office)
icq: 22034399 (home)
--

On Fri, 11 Dec 1998, Frank Tobin wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> I was wondering if there was a way to limit access to xdm according to
> users.  A major reason I'd like to be able to do this is that it could
> ensure that I could keep track of logins to xdm that are done remotely.
> Can one get xdm to use login(1), and consequently, check access via
> /etc/login.access?
> 
> - -- 
> 
> Frank Tobin			"To learn what is good and what is to be
> http://www.bigfoot.com/~ftobin	 valued, those truths which cannot be
> 				 shaken or changed." Myst: The Book of Atrus
> FreeBSD: The Power To Serve
> 
> If you use Pine and PGP 5.0(i), try pgpenvelope.
> http://www.bigfoot.com/~ftobin/resources.html
> 
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 5.0i for non-commercial use
> Charset: noconv
> 
> iQA/AwUBNnH1vgL4UDr0DrZeEQJo0ACgrulKFqcHLUqw10DwJHF1/NSew/oAoLaR
> c5IhVzfZKi2Rsq+z7iWFNvX9
> =nSD+
> -----END PGP SIGNATURE-----
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message