Ethan Benson ([EMAIL PROTECTED]) wrote: > there is another point, how necessary is it for gpm to run as root?
the DoS has nothing to do with executing naughty code, but with mucking around with the mouse itself. gpm reads from the serial port, and writes to /dev/vcs* (i think). so making gpm run as another user or dropping privs sooner probably wouldn't do us much good. -- (jacob kuntz) [EMAIL PROTECTED] [EMAIL PROTECTED],underworld}.net (megabite systems) "they that can give up liberty to obtain a little temporary safety deserve neither liberty nor safety." (benjamin franklin)