On Mon, 13 Jan 2003, Kevin Oberman wrote: >> Any machine requiring more security than that, shouldn't have X >> installed on it at all (IMHO). > > >The original poster sis not say what OS he was running, but FreeBSD >never installs the X server SUID. Instead it uses a separate Xwrapper >which is SUID and greatly limits the amount of code executing at >elevated privs. > >This is all a "good thing", but the wrapper must be re-built and >installed every time a new server is installed.
Red Hat Linux also shipped Xwrapper, up until someone informed me that the XFree86 4.x server itself had incorporated the functionality of Xwrapper into itself directly. The X server drops priveledges after they are no longer needed also. If you ship XFree86 3.x and 4.x together and provide users the choice of what X server to use, then Xwrapper might be still useful though. -- Mike A. Harris _______________________________________________ XFree86 mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/xfree86
