Re: X11 exploit info
On Sunday 12 February 2006 07:12, Christian Mueller wrote:[color=blue]
> Am Sonntag, 12. Februar 2006 12:23 schrieb Dave Feustel:[color=green]
> > On Sunday 12 February 2006 06:02, Ivor Hewitt wrote:[color=darkred]
> > > Ok well apart from the fact that this is about an article from 2004 about
> > > something that isn't enabled by default and is nothing to do with KDE
> > > dev... :)[/color]
> > At least two of the exploits I have found work against kde.[/color]
> These are no exploits. The articles you linked to are applications
> of the way security works (or doesn't work) on Unixoid systems / X11.
> They describe what root can do in such an environment. That's
> what a cracker could do *after* using an exploit to gain root
Sorry. These programs run as normal users, not as root.
> It's no surprise that they work on KDE as KDE runs on top
> of these subsystems. There's also nothing KDE can do about it
> so I would still say it's off-topic here (and also on kde-security).
> It's similar to this:
> "I just discovered a new type of denial-of-service attack against KDE!
> Pulling the power plug crashes KDE reliably and reproducibly.
> I'll email the kde-security list right away. :)
> >> Visit [url]http://mail.kde.org/mailman/listinfo/kde-devel#unsub[/url] to unsubscribe <<[/color][/color]
Lose, v., experience a loss, get rid of, "lose the weight"
Loose, adj., not tight, let go, free, "loose clothing"
>> Visit [url]http://mail.kde.org/mailman/listinfo/kde-devel#unsub[/url] to unsubscribe <<[/color][/color]