Permissions on key directories/files.

Lars Hallberg spam at
Tue Mar 23 01:22:05 EET 2004

Oswald Buddenhagen wrote:

>so while i don't really like it, putting it in ?dm and xinit (which
>would need setuid root ...) seems like the best option. of course one
>could make them call a script (Xprepare?), but i'm not sure this buys us
>that much.
Suid scripts is scary...

But is this not a small task enuff to write a secure litle c program 
(that will realy be secure with a litle audit) that can be suid root. 
Then it can be called where needed without forcing anything big and 
scary to be suid root.

Most stuf, i guess, can be hardcorded in that smal program. So anyone 
trying to run it will not be able to do any harm.

Such program need not depend on anything 'contiversal' an can be used by 
everyone. A referens implementation sounds better than a standard for 
this :-) Much of the code can probably be 'ripped' from other programs.


More information about the xdg mailing list