[CentOS] freenx
Les Mikesell
lesmikesell at gmail.com
Tue Jan 24 21:44:56 UTC 2006
On Tue, 2006-01-24 at 15:34, Maciej Żenczykowski wrote:
> The nxserver binary
> could be setuid and/or setgid 'nx' thus granting it the necessary rights,
> it could grab whatever special stuff nx is allowed to do and drop them or
> fork to a child without them to allow the parent to clean up afterwards.
...
> Do you feel safe having anybody
> capable of ssh'ing into nx at yourmachine? You sure there are no bugs to
> exploit in the nxserver 'shell'
Wasn't this the same binary you just suggested making setuid - but now
you don't trust it ??? Please comment again after reading the link I
just posted.
--
Les Mikesell
lesmikesell at gmail.com
More information about the CentOS
mailing list