sudo with problems
Grant McDorman
grant.mcdorman@cedara.com
Tue Apr 29 16:58:01 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On April 27, 2003 12:08 am, Uwe Dippel wrote:
> The really interesting part to me after a few weeks of VNC-ing is that
> commenting out that single line
> # $cmd .= " -auth $xauthorityFile";
> not only solves my double delay and messages about auth-problems but
> also, finally, permits to open two Gnome-sessions of the same user on
> the same machine (local & remote).
>
> Maybe there is someone with much more insight on how badly this affects
> security ?
> To me at least it seems better than a general xhost +, because this
> here would 'only' affect the security in case of a vnc-session; if I'm
> right?
Removing the -auth from the XVnc call is the same as doing 'xhost +' for that
server: there is no security whatsoever for XVnc. Non-VNC sessions, of
course, will still have the standard X security.
I would suggest that you try setting XAUTHORITY to a unique file for the
server before running vncserver; try $HOME/.Xauthority-vnc, for example.
You will probably have to set it to the same value at the start of
$HOME/.vnc/xstartup.
- --
Grant McDorman <grant.mcdorman@cedara.com>, Sr. Software Design Consultant
Cedara Software Corp. <URL:http://www.cedara.com>
(formerly I.S.G. Technologies Inc.)
Mississauga, Ontario, Canada
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (SunOS)
iD4DBQE+rqDZLVa+EmyjizARAr/MAJYrX74pl7BdnGroStOC2cgizKakAKCMkLRj
N2EnDyUuCJp6AM8LSJgFVA==
=sP7L
-----END PGP SIGNATURE-----