Bugtraq mailing list archives

Re: Xwindows security?

From: proff () suburbia apana org au (Julian Assange)
Date: Sat, 14 Jan 1995 15:26:26 +1100 (EST)

From: Jon Peatfield <J.S.Peatfield () amtp cam ac uk>

[...]

I'd like to add a new authentication mechanism to X which uses Ident (TAP, 
RFC-931 etc), to check that a user is permitted.  e.g. a server is given a 
list of allowed user/machine pairs by a program like xhost:
[which it checks using ident for incoming connections...]


This pretty much reduces down to the same problem that xhost has.  I have
several program that will fake my ident ID to be whatever I want it to be.


Why bother? I hear there is this real hot cracker program called "su".

Proff

Current thread:

Re: Xwindows security?, (continued)
- - - Re: Xwindows security? Rens Troost (Jan 11)
    - Re: Xwindows security? Jon Peatfield (Jan 11)
    - Re: Xwindows security? Rens Troost (Jan 11)
    - Re: Xwindows security? Jon Peatfield (Jan 11)
    - xcrowbar William McVey (Jan 11)
    - xcrowbar der Mouse (Jan 11)
    - Re: Xwindows security? Dave Kinchlea (Jan 11)
    - Re: Xwindows security? Adam Shostack (Jan 11)
    - Re: Xwindows security? Darren Reed (Jan 11)
    - Re: Xwindows security? Jim McCoy (Jan 11)
    - Re: Xwindows security? Julian Assange (Jan 13)
    - Re: Xwindows security? Timothy Newsham (Jan 11)
    - about /usr/etc/chill *Hobbit* (Jan 11)
    - mountd keeps vanishing (!) Eric Berggren (Jan 11)
    - Re: mountd keeps vanishing (!) Eric Kimminau (Jan 12)
    - Re: mountd keeps vanishing (!) Karl Strickland (Jan 12)
    - Re: mountd keeps vanishing (!) Pete Shipley (Jan 14)
    - X Window System security Stephen Gildea (Jan 11)
- Re: Xwindows security? William McVey (Jan 10)
  - Re: Xwindows security? Benjamin Fried (Jan 10)
- Re: Xwindows security? Doug McLaren (Jan 11)

(Thread continues...)