Re: broken_suid mount option - Frank van Maarseveen

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Frank van Maarseveen <frankvm@xs4all.nl>
To: Trond Myklebust <trond.myklebust@fys.uio.no>
Cc: Frank van Maarseveen <frankvm@xs4all.nl>,
	Linux NFS mailing list <nfs@lists.sourceforge.net>
Subject: Re: broken_suid mount option
Date: Sun, 5 Sep 2004 23:55:58 +0200	[thread overview]
Message-ID: <20040905215558.GA29526@janus> (raw)
In-Reply-To: <1094420629.8081.39.camel@lade.trondhjem.org>

On Sun, Sep 05, 2004 at 05:43:49PM -0400, Trond Myklebust wrote:
> 
> Just yesterday I saw traces made on a college server by a student this
> summer in which >99% of the traffic was broken lookups of .Xauthority by
> 'root' processes...

So they run old XFree86 software with broken setuid programs and
compensate using the broken_suid mount option. They probably use
an old kernel as well. Isn't it time to change this for 2.6?
You mentioned the word "security" ;-)

-- 
Frank


-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
NFS maillist  -  NFS@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nfs

next prev parent reply	other threads:[~2004-09-05 21:56 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-09-05 21:37 broken_suid mount option Frank van Maarseveen
2004-09-05 21:43 ` Trond Myklebust
2004-09-05 21:55   ` Frank van Maarseveen [this message]
2004-09-05 22:03     ` Trond Myklebust
2004-09-06 19:39       ` [RFC] remove "broken_suid" nfs " Frank van Maarseveen

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20040905215558.GA29526@janus \
    --to=frankvm@xs4all.nl \
    --cc=nfs@lists.sourceforge.net \
    --cc=trond.myklebust@fys.uio.no \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.