Date: Mon, 10 Apr 95 11:31:02 MDT
From: terry@cs.weber.edu (Terry Lambert)
To: Harlan.Stenn@pfcs.com (Harlan Stenn)
Cc: jkh@freefall.cdrom.com, kuku@gilberto.physik.rwth-aachen.de, joerg_wunsch@uriah.heep.sax.de, freebsd-current@freefall.cdrom.com
Subject: Re: should su retain ${DISPLAY}
Message-ID: <9504101731.AA24214@cs.weber.edu>
In-Reply-To: <16066.797480012@mumps.pfcs.com> from "Harlan Stenn" at Apr 9, 95 10:13:32 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> The short version of my comment on DISPLAY and "su -" is that I'd > usually prefer that it be there for me. Since I don't get this behavior > be default, I don't know about any times I'd prefer that it didn't > happen. I believe that allowing a root credentialed process to open a window on an X termintal without going through the authentication protocol once again (this time with the new credentials) represents a probable security hole. Terry Lambert terry@cs.weber.edu --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9504101731.AA24214>