On Mon, Sep 26, 2005 at 02:27:01AM +0000, Lennon Cook wrote: > After a bit more googling, I found this: > > http://mirror.sg.depaul.edu/pub/x.org/R6.6/tars/RELNOTES.TXT > >For additional security you may install xterm without suid-root; however > >if you do, xterm will not be able to make utmp or utmpx entries. > (it's right down in 'Security Considerations', near the bottom)
A nice work around for that is to make xterm setgid, group utmp and then make /var/log/lastlog group-owned and writable by utmp. However, it should be noted that the need for xterm to update utmp is somewhat dubious (read as unnecessary). -- Archaic Want control, education, and security from your operating system? Hardened Linux From Scratch http://www.linuxfromscratch.org/hlfs -- http://linuxfromscratch.org/mailman/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page