[TAG] (forw) Re: (forw) Re: (forw) Re: lpr works for user not root in Basiclinux 2.1
Thomas Adam
thomas.adam22 at gmail.com
Mon Jan 29 03:30:07 MSK 2007
[ Hopefully I haven't completely messed up attribution. ]
On Sun, Jan 28, 2007 at 04:21:21PM -0800, Rick Moen wrote:
> ----- Forwarded message from Sindi Keesan <keesan at grex.cyberspace.org> -----
>
> I mentioned a while ago that I had clones of the same linux on several
> computers so I am not concerned about accidentally wiping out files.
That depends on the files you backup, and how you clone them. There are
various filesystems out there which operate in this way to do just that.
> And from what various people have told me one cannot hack my system if I
> have no network daemons running and X only has local access and Opera has
> no vulnerabilities. And chkrootkit found nothing after four years. So
> it is not obvious. I am not trying to be intentionally stupid.
Well, the X11 issue comes down to access control (see 'man xhost'). And
it's still a bogus comment since it's not so much access control that's
the issue, as it is having the program run as user root in the first
place.
Take for example, a copy of gvim. Guess what happens if that's started
as root.
-- Thomas Adam
--
"Wanting to feel; to know what is real. Living is a lie." -- Purpoise
Song, by The Monkees.
More information about the TAG
mailing list