Am 28.12.16 um 20:47 schrieb Michael:
Hello, On Wed, 28 Dec 2016 19:04:20 +0000 Taylor R Campbell <campbell+netbsd-tech-...@mumble.net> wrote:Date: Wed, 28 Dec 2016 10:06:00 -0500 From: Michael <macal...@netbsd.org> On Wed, 28 Dec 2016 07:26:26 +0000 co...@sdf.org wrote: > On Wed, Dec 28, 2016 at 02:49:54AM +0000, David Holland wrote: > NetBSD is just about the only OS still using xorg as setuid root. > Pretty much everyone else did away with it. We only really need it for /dev/pci*, because that lets you mmap() arbitrary PCI space - things like wsfb or sbus graphics work without it. Likewise DRM/KMS. We should disable options INSECURE by default on x86 and make Xorg not be suid root. Obscure systems that still need it -- e.g., VIA, perhaps, which has no KMS driver -- can use custom kernel configs.That would kill almost all X on non-x86 PCI.
You can still set INSECURE if you want, on your custom kernel.
