Bugtraq mailing list archives
Re: Bug in xfs
From: jiivee () iki fi (Juha Virtanen)
Date: Wed, 31 Mar 1999 09:38:28 +0300
Regardless of the bug Lukasz Trabinski found in xfs -- it should be fixed and similar bugs traced from other software as well -- it is not necessary to run xfs with root permissions at all. Someone may unknowingly argue that it needs to listen a port. Yes, but that's usually port 7100, and as it's not under 1024 limit, so root permission isn't needed. I've run xfs for ages on separate account. below is the significant startup line I use in RedHat 5.x systems: daemon /bin/su fontsvr -c "/usr/X11/bin/xfs -config /etc/X11/fs/config -port 7100 &" The rule is: if a daemon can do its work with lower permissions than root, it should. I do also run named as nonroot permissions (Startup /usr/sbin/named -u user -g group). I recommend other people doing this as well. Juha Virtanen -- <URL:http://www.iki.fi/jiivee/>
Current thread:
- Bug in xfs, (continued)
- Bug in xfs Lukasz Trabinski (Mar 29)
- ICQ Webserver bug Kerb (Mar 29)
- IE 5.0 allows reading and sending local files to a remote server Georgi Guninski (Mar 30)
- Excel Virus Seree Visitseelwat (Mar 30)
- Re: IE 5.0 allows reading and sending local files to a remote Andrew Tulloch (Mar 31)
- Procmail scanning for hostile macros in Microsoft document e-mail John D. Hardin (Mar 31)
- Excel variant of Melissa Marcel de Haas (Mar 30)
- Re: Excel variant of Melissa Ken Pfeil (Mar 31)
- Bug in xfs Lukasz Trabinski (Mar 29)
- Re: Bug in xfs Roman Drahtmueller (Mar 30)
- Re: Bug in xfs Matthieu Herrb (Mar 30)
- Re: Bug in xfs Juha Virtanen (Mar 30)
- Re: Bug in xfs Alan Cox (Mar 31)
- [support_feedback () us-support external hp com: Security Bulletins Patrick Oonk (Mar 31)
- Re: Melissa Macro Virus Brett Glass (Mar 30)
- Re: Melissa Macro Virus Dimitry Andric (Mar 31)
- Potential vulnerability in SCO TermVision Windows 95 client JJ Gray (Mar 31)