Re: [gtk-list] Re: gtkrc

From: Owen Taylor <otaylor redhat com>
To: Chris Evans <chris ferret lmh ox ac uk>
Cc: gtk-list redhat com
Subject: Re: [gtk-list] Re: gtkrc
Date: 02 Jun 1999 07:35:24 -0400

Chris Evans <chris@ferret.lmh.ox.ac.uk> writes:

> On 15 Apr 1999 otaylor@redhat.com wrote:
> 
> > Every GTK+ application automatically parses ~/.gtkrc
> > and $(sysconfdir)/etc/gtk/gtkrc.
> 
> Is that strictly true? What if the GTK app is suid root?

(Cleaning out my inbox)

A suid root GTK+ application is a security hole. 

The obvious holes could be fixed, but it still would a
really bad idea. Anything as complex as a GTK+ program
should not be suid root.

Regards,
                                        Owen

Follow-Ups:
- Basic Beginners Installation question
  - From: Peter Bubik

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]