On Mon, Sep 26, 2005 at 02:27:01AM +0000, Lennon Cook wrote:
> After a bit more googling, I found this:
> 
> http://mirror.sg.depaul.edu/pub/x.org/R6.6/tars/RELNOTES.TXT
> >For additional security you may install xterm without suid-root; however
> >if you do, xterm will not be able to make utmp or utmpx entries.
> (it's right down in 'Security Considerations',  near the bottom)

A nice work around for that is to make xterm setgid, group utmp and then
make /var/log/lastlog group-owned and writable by utmp. However, it
should be noted that the need for xterm to update utmp is somewhat
dubious (read as unnecessary).

-- 
Archaic

Want control, education, and security from your operating system?
Hardened Linux From Scratch
http://www.linuxfromscratch.org/hlfs

-- 
http://linuxfromscratch.org/mailman/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to