tech-security: Re: xterm setuid and ssh -X

Subject: Re: xterm setuid and ssh -X
To: None <tech-security@netbsd.org>
From: Aaron J. Grier <agrier@poofygoof.com>
List: tech-security
Date: 01/02/2002 22:34:08

On Fri, Dec 21, 2001 at 04:37:32PM -0500, Jan Schaumann wrote:

> Could somebody reveal what the common consensus (aside from "don't use
> xterm") is on this (and on forwarding X via ssh)?

xterm writes to utmp / wtmp, so is suid root for that...  for better or
worse.

-- 
  Aaron J. Grier | "Not your ordinary poofy goof." | agrier@poofygoof.com
          "Making people dance so hard their pants almost fall
                 off is kind of fun."  -- David Evans