On Sat, 23 May 2015 05:12:58 -0400 "ertetlen barmok" <ertetlenbar...@safe-mail.net> wrote:
> There is no solution for locking an OpenBSD Desktop while using FVWM2 > and "nosuid" mount option enabled for all mountpoints in /etc/fstab? xlock is setgid auth, so you could add your user to the auth group. Whether or not this is a good idea is another matter, and it's likely to be a worse one than allowing binaries to run setuid. There are going to be many other things broken on a system with nosuid used for all mounts. Why do you want / and /usr to be mounted nosuid? You're already implicitly trusting the OpenBSD codebase by running OpenBSD, so what's wrong with trusting OpenBSD's setuid executables?