Permissions on key directories/files.
spam at micropp.se
Tue Mar 23 01:22:05 EET 2004
Oswald Buddenhagen wrote:
>so while i don't really like it, putting it in ?dm and xinit (which
>would need setuid root ...) seems like the best option. of course one
>could make them call a script (Xprepare?), but i'm not sure this buys us
Suid scripts is scary...
But is this not a small task enuff to write a secure litle c program
(that will realy be secure with a litle audit) that can be suid root.
Then it can be called where needed without forcing anything big and
scary to be suid root.
Most stuf, i guess, can be hardcorded in that smal program. So anyone
trying to run it will not be able to do any harm.
Such program need not depend on anything 'contiversal' an can be used by
everyone. A referens implementation sounds better than a standard for
this :-) Much of the code can probably be 'ripped' from other programs.
More information about the xdg