Re: setuid bit neccesary for GNOME?

From: "Brandon S. Allbery KF8NH" <allbery ece cmu edu>
To: mcnichol austin ibm com, Padraig Obriain ireland sun com, ante Update UU SE
Cc: gnome-devel-list gnome org
Subject: Re: setuid bit neccesary for GNOME?
Date: Fri, 19 Jan 2001 10:34:03 -0500

On Friday, January 19, 2001 09:26:07 -0600, mcnichol austin ibm com wrote:
+-----
| I would double check this.  I would guess that without setuid,
| xscreensaver cannot get to the password file.  The effect of this would
| be that regular users would not be able to unlock their screen.
+--->8

It will work on Linux because Linux-PAM will call out to a setuid programto check the password... which only works for the invoker; the programwon't check anyone else's password. Thus, the user's password will workbut root's won't.

On other systems which use shadow passwords of any stripe (including AIX's/etc/security stuff) it must be setuid root.


--
brandon s. allbery     [os/2][linux][solaris][japh]   allbery kf8nh apk net
system administrator        [WAY too many hats]         allbery ece cmu edu
electrical and computer engineering                                   KF8NH
carnegie mellon university     ["better check the oblivious first" -ke6sls]

References:
- Re: setuid bit neccesary for GNOME?
  - From: mcnichol

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]