Re: [tlug] Root - NO KDE

[Eric Oliver Flores <tokoton@example.com>]

No!  I am not running as root at all.
I was just doing some adjustments and they had to be done as root and
there went of the KDE since the mandrake distro fire root in kde mode. 
Now I got it to console and user as KDE which is my prefer setting.  I
gave up and fix it... couldn't figure out what was going on at one point
:-O


On Mon, 2002-06-24 at 17:41, Matt Doughty wrote:
> On Mon, Jun 24, 2002 at 05:08:32PM +0900, Eric Oliver Flores wrote:
> > Are you are referring to the recent found vulnerability?
> > The Mandrake Guys were quick to release a fix (MDKSA-2002-:039-2).
> > I hope! :)
> > 
> 
> All well and good, but you are completely missing the point. Anything
> that is run as root has access to the entire system. If someone finds
> a remotely exploit in some piece of software you run the possible
> damage that can be done is very much effected by the access rights of
> the compromised software.  If you are running everything as root then
> you are wide open.  Moreover, there is never a need to run Xfree as 
> root.  In a way this 'bug' is actually a security 'feature' that you
> really shouldn't be trying to fix.  
> 
> -Matt
> 
>