Re: X windows: don't install or don't run?

From: ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe Trin)
Date: Wed, 26 Jul 2006 15:01:03 -0500

On Tue, 25 Jul 2006, in the Usenet newsgroup comp.os.linux.security, in article
<1153878500_4837@xxxxxxxxxxxxxxxxxxxx>, jqpx37 wrote:

"Moe Trin" <ibuprofin@xxxxxxxxxxxxxxxxxxxxxx> wrote

What is to stop anyone from typing 'runx', 'startx' or even 'xinit'
(with the appropriate path prefix if those commands are not in the
current PATH)?

If ownership and permissions are set appropriately, how could he
execute these?

Setting the permissions such that X is not executable may work, but is a
lot of work - especially to set the permissions back when _you_ need to
use it.

[compton ~]$ find /usr/X11R6/ -type f -perm -004 | wc -l
3101
[compton ~]$ find /usr/X11R6/ -type f -perm -005 | wc -l
288
[compton ~]$ find /usr/X11R6/ -type f -perm -400 | wc -l
3105
[compton ~]$ find /usr/X11R6/ -type f -perm -500 | wc -l
292
[compton ~]$ find /usr/X11R6/ -type f -perm -4500 | wc -l
4
[compton ~]$ find /usr/X11R6/ -type f -perm -2050 | wc -l
1
[compton ~]$

'man find' to see what the '-perm' option is finding.

If your distribution is rpm based, there is a command you can give to
rpm to reset ownership and/or permissions back to what the package manager
thinks is correct ('man rpm'). If you have one of the "popular" Linux
distributions that have a "let me help you" tool to monitor file ownership
and permissions, you'll have to kick that "helper" between the legs, or
it will silently reset the permissions on it's own - just to help you,
you understand.

Old guy
.

References:
- X windows: don't install or don't run?
  - From: jqpx37
- Re: X windows: don't install or don't run?
  - From: Moe Trin
- Re: X windows: don't install or don't run?
  - From: jqpx37

Prev by Date: Re: Somebody is keep trying to ssh into my systems, how can I stop that?
Next by Date: Re: X windows: don't install or don't run?
Previous by thread: Re: X windows: don't install or don't run?
Next by thread: Re: X windows: don't install or don't run?
Index(es):
- Date
- Thread

Relevant Pages

Re: Newbie
... I will now tell you some basic commands. ... Easy file has rights and a owner. ... file and who may execute it. ... The last three characters are about the permissions of user ...
(alt.linux)
Re: Newbie
... But I will tell you some basic commands for the command ... > Easy file has rights and a owner. ... In this case groupmembers will have read and execute ... The last three characters are about the permissions of user ...
(alt.linux)
RE: ssh "Permission denied" on everything
... For whatever reasons /etc and /usr had permissions ... ssh "Permission denied" on everything ... When we log in as root on the box the commands we ... are trying to execute show that they are rwxr-xr-x, ...
(Fedora)
Re: List Users Permissions down to table.column action
... THIS STORED PROCEDURE GENERATES COMMANDS ... -- FIXED PROBLEMS WITH STATEMENT LEVEL PERMISSIONS GRANTING. ... -- CREATE TABLE TO HOLD LIST OF USERS IN CURRENT DATABASE ... -- GRANT USER ACCESS TO SERVER ROLES ...
(microsoft.public.sqlserver.security)
Solaris 10 autofs directory permissions - Solution
... the fact that my map file has 755 permissions not 644. ... If the execute permission is set, it becomes an executable map which is ... map is expected to return the content of an automounter map ...
(SunManagers)