On Mon May 27, 2002 at 02:04:10PM +0100, Michael Brown wrote: > In /usr/share/config/kdm/kdmrc: the AllowShutdown entry appears in the > sections > > [X-*-Greeter] > AllowShutdown=Root > ... > [X-:*-Greeter] > AllowShutdown=All > > instead of > > [X-*-Core] > AllowShutdown=Root > ... > [X-:*-Core] > AllowShutdown=All > > The result is that kdm assumes the entry is missing and defaults to > > [X-*-Core] > AllowShutdown=All > ... > [X-:*-Core] > AllowShutdown=All > > thereby allowing any user on a *remote* X display to shut down or reboot > the machine without having to supply the root password. > > > This bug is present in kdebase-3.0.1-10mdk.i586.rpm (latest Cooker > release).
You forgot this part: [Xdmcp] Enable=false KeyFile=/etc/X11/xdm/xdm-keys Willing= Xaccess=/etc/X11/xdm/Xaccess Thus, remote X displays are not active, by default. Ie. a remote user cannot shutdown your machine if xdmcp is not active (they cannot connect to your kdm to begin with). Yes, it should be fixed in cooker. As per Peter's follow up to this with it being improper in 8.2 as well, it is a local problem, not a remote problem, thus probably won't be fixed in updates (kdebase is far too big to rebuild to modify two lines). But it is improperly configured, so someone should update it for cooker (Laurent?) -- MandrakeSoft Security; http://www.mandrakesecure.net/ "lynx -source http://www.freezer-burn.org/bios/vdanen.gpg | gpg --import" 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD Current Linux kernel 2.4.18-6.4mdk uptime: 4 days 2 hours 55 minutes.
msg64898/pgp00000.pgp
Description: PGP signature
