On tor, 25 nov 1999, you wrote:
> Joachim Holst wrote:
>
> > I an't see how that fits in. When I installed the system, it asked me to
> > add a users and in wich runlevel I wold like too boot. If it was done for
> > security reasons, I should not have been asked to add a user. Redhat that
> > doesn't ask for a useraccount during install (at least not 6.0) doesn't
> > behave that way and in RedHat you have to manually give users access to
> > CD-Rom and floppy drives.
> >
> > So nah, I don't buy your argument..
>
> All right.
>
> You don't, but most of us who administrate Linux boxes in networking
> environment do.
>
> If you really need a proof, try this:
>
> - open an X session as usual then "xhost +localhost" in a shell
> - telnet into your computer from another one, with another username
> (you may login with your username from a virtual console as well
> but the demonstration will be more general the other way)
> - from there type this:
>
> export DISPLAY=:0 && while : ; do xmessage "do you catch it?" ; done
>
i know about this. But, xhost has a few optional parameters like : xhost
+local:localhost. This will enable local users to access the X server.
Doing this via telnet is not allowed in RedHat either. I fel like were talking
about two different things here. I'm talking local and you are talking network.
Now I'm no network administrator of some kind (don't feel qualified enough to
fully administrate a Linux system and windows is something that I wouldn't like
to administer), but I agree. when talking about network access the sysadmin
should carefully consider what hosts will have access to the system. Setting
this to something that might be exploited by default, is stupid. Makes me think
about win2K. In the Swedish version, one can log on as guest and start deleting
files in the system directory.
> If Redhat 6.0 allows this without an xhost call being needed, this is
> a security breach they [have fixed already|will fix soon], not a
> comfortable feature.
>
> And if you're asked to create a non privileged user at install time it's
> in hope you'll remember to login as such a user and "su" only when needed.
> Instead of happily work your everyday X session as root, like any Windoze
> bozo... ;-)))
>
Of course I log on as a regular user. When I need to do something more advanced
I either SU or go root in a console window.
about windows, it's basically a dos session with a nice (???) graphical shell
and since DOS is single taskin, windows also is. The feature is that it can
single task multiple tasks whitout having to exit the application If I'm not
misstaking, there also was a quite widely used DOS package for this. Don't
remember the name thoug.
Anyhow, to get back on topic, the problem only occurs when dialing out with
KPPP (at least that's what I have noticed this far). I have set my system up tu
use diald and I'll se what hapens.
Thank's for the reply.
Kind reguards
/Jocke!
--
....... The free UNIX operating system
:::' ....... ......
::: * ::. ::'
::: .:: .:.::. .:: .:: ::. :'
::: :: :: :: :: :: :::.
::: .::. .:: ::. ::::. .:' ::.
..:::.....................::' .::::.
