Tony Nugent wrote:
>
[]
>
> The solution is to make /etc/mtab a symbolic link to /proc/mounts
>
> But there are some downsides to doing this... you loose information
> that's kept in /etc/mtab that isn't in /proc/mounts (like the extended
> options... uid, gid, mode and so on).
>
> Do "cat /pr
On Sun Mar 19 2000 at 16:45, Chris Abbey wrote:
> At 19:06 3/19/00 +0300, Michael Ju. Tokarev wrote:
> >One small(?) relatted question: is it possible to mount / readonly?
> >At least with mount command itself, it seemed to be impossible, as
> >mount tries to modify /etc/mtab, and initscripts dir
> Right. Root should never accept to su from a terminal someone else is
> logged in, but this still leaves the problem of the security conscious
> Root user who never runs untrusted software as root but one day while
> logged as a normal user he runs a program we will call "trojan" who will
> mod
>
> > It is unfortunate that RedHat's SU keeps the same environment and
> > specially the same PATH as this leaves the user open to a trivial
>
> Actually doing anything else would be extremely broken.
>
Caldera does it nearly right (except for the fact they reset all the
environment variables
>
> Use 'su -'.
>
I knew the trick but this does not fix the basic problem as a tool
must be secure out of the box. A user could forget or be unaware of
the trick.
--
Jean Francois Martinez
Project Independence: Linux for the Masses
http://www.independence.seul.org
> It is unfortunate that RedHat's SU keeps the same environment and
> specially the same PATH as this leaves the user open to a trivial
Actually doing anything else would be extremely broken.
> and then tricks root for using su from the same terminal instead of
> doing a full login or, a program
Get KDE from rawhide.
Matt
On Sat, Mar 25, 2000 at 04:41:41PM +0100, JF Martinez wrote:
>
> Whenever you start a KDE application in RedHat 6.2 beta it will be
> started inside an xterm despite KDE apps not needing it. Does anyone
> know there is needed to fix this problem (besides reconfigurin
Use 'su -'.
Matt
On Sat, Mar 25, 2000 at 04:37:24PM +0100, JF Martinez wrote:
> Caldera does this a bit better, it resets environment so they don't
> have this security problem, but not completely right as that means
> losing the contents of the DISPLAY and HOME variables (the loss of the
> late
On Sat, Mar 25, 2000 at 04:37:24PM +0100, JF Martinez wrote:
>
> It is unfortunate that RedHat's SU keeps the same environment and
> specially the same PATH as this leaves the user open to a trivial
> attack: either a user who places a malicious program in his $HOME/bin
I always do "su -"
or i
>
> It's rather sad to see that GnoRPM, despite all criticisms it
> received, hasn't improved even slightly. In fact the latest version
> is the same as in 6.1. So please do something Red Hat people,
> because GnoRPM is a poor app, in terms of both UI and features.
>
There are a few functionnal
It is unfortunate that RedHat's SU keeps the same environment and
specially the same PATH as this leaves the user open to a trivial
attack: either a user who places a malicious program in his $HOME/bin
and then tricks root for using su from the same terminal instead of
doing a full login or, a pr
Whenever you start a KDE application in RedHat 6.2 beta it will be
started inside an xterm despite KDE apps not needing it. Does anyone
know there is needed to fix this problem (besides reconfiguring one by
one every KDE application)?
--
Jean Francois Martinez
Project
Hello,
I have been trying to get IPX configured under Rawhide but no matter what
settings I try I always get the following message.
ipx_configure: socket: invalid argument
or
ipx_interface: socket: invalid argument
--
Best regards,
Robin mailto:[EMAIL PROTEC
It's rather sad to see that GnoRPM, despite all criticisms it received,
hasn't improved even slightly. In fact the latest version is the same as
in 6.1. So please do something Red Hat people, because GnoRPM is a poor
app, in terms of both UI and features.
Alexander
Homepage: http://www.musicland
14 matches
Mail list logo
