Re: How come GNOME is hard to install.

From: Martin Kasper Petersen <mkp socsci auc dk>
To: Mike Bond <mike bond template com>, Robert Bihlmeyer <robbe orcus priv at>
Cc: gnome-list gnome org
Subject: Re: How come GNOME is hard to install.
Date: 15 Feb 1999 21:05:42 +0100

>>>>> "Mike" == Mike Bond <mike.bond@template.com> writes:

Mike> Are we seriously going to require yet another user/group just to
Mike> use gdm? Why? 

Because the gdmgreeter is linked to several unaudited libraries. And
you really don't want a program with root priviledges snooping around
and reading files in user directories. Or accepting arbitrary input
from users at the login prompt.

Initially gdmgreeter ran as nobody because this user exists on most
systems. However, access to the X server is controlled using cookie
files and gdmgreeter (and only gdmgreeter) needs to be able to read
these to open its window. Hence the requirement for a dedicated user.


Mike> It is one thing to allow a sysadmin to do that, another entirely
Mike> to require it.

I decided to enforce it because 99% of the users will end up having
security disasters on their desks otherwise.

-- 
Martin Kasper Petersen			BOFH, IC1&2, Aalborg University, DK
mailto:mkp@SunSITE.auc.dk		http://www.socsci.auc.dk/~mkp/

Follow-Ups:
- gdm needing yet another user
  - From: Robert Bihlmeyer

References:
- How come GNOME is hard to install.
  - From: Yoni Elhanani
- Re: How come GNOME is hard to install.
  - From: Martin Kasper Petersen

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]