From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <gentoo-user+bounces-144043-garchives=archives.gentoo.org@lists.gentoo.org> Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 858631381FA for <garchives@archives.gentoo.org>; Mon, 31 Dec 2012 08:08:57 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id B31ABE05D9; Mon, 31 Dec 2012 08:08:43 +0000 (UTC) Received: from mail-we0-f177.google.com (mail-we0-f177.google.com [74.125.82.177]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id AE12721C00C for <gentoo-user@lists.gentoo.org>; Mon, 31 Dec 2012 08:07:34 +0000 (UTC) Received: by mail-we0-f177.google.com with SMTP id x48so5801174wey.22 for <gentoo-user@lists.gentoo.org>; Mon, 31 Dec 2012 00:07:33 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:date:from:to:subject:message-id:in-reply-to:references :organization:x-mailer:mime-version:content-type :content-transfer-encoding; bh=1L9fEeyZbQScufseJ+oZLKC4uh1KTL3lge/f/xkJ2Uk=; b=ZpIzr+8gSSX7aiFeCAvOw9UjAjeamrtdUsHToVcqBN+Mnes6OIPAVPxVd5uMZ65b7s eKK3mYeW+58J7mSjwWAeRf/JTQSuu1g8sJRSDuJ4slQdn7fwcy14HdaY6Yh2sKgZzz7W L/BhW9qiweKK8FB2M+l6XcNp4ORj6ysMM+SKlF+Jh7h0yFjRtmftTIRC3lim1I5Yi0J2 RatauEOWs5iIfsneZKfXcerZ63GALyjOE70ZFFn+yJodbksruT8W4TNRWsX7KDs3zY5r 4+LYpO533KSghL2l+uf7l65wr57B6FMrR1sjAPfVHNdA+yZaUmRwjHW8Au1p6kKpz8Ja vc+g== X-Received: by 10.180.85.103 with SMTP id g7mr54424703wiz.29.1356941253110; Mon, 31 Dec 2012 00:07:33 -0800 (PST) Received: from khamul.example.com (196-215-209-117.dynamic.isadsl.co.za. [196.215.209.117]) by mx.google.com with ESMTPS id eo10sm68451714wib.9.2012.12.31.00.07.30 (version=SSLv3 cipher=OTHER); Mon, 31 Dec 2012 00:07:32 -0800 (PST) Date: Mon, 31 Dec 2012 10:03:40 +0200 From: Alan McKinnon <alan.mckinnon@gmail.com> To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: Heads up if you start X with startx; xorg-server suid flag Message-ID: <20121231100340.1ce165ea@khamul.example.com> In-Reply-To: <50E1454E.8000509@gmail.com> References: <20121231062817.GA2646@waltdnes.org> <20121231064747.GC2646@waltdnes.org> <50E1454E.8000509@gmail.com> Organization: Internet Solutions X-Mailer: Claws Mail 3.8.1 (GTK+ 2.24.14; x86_64-pc-linux-gnu) Precedence: bulk List-Post: <mailto:gentoo-user@lists.gentoo.org> List-Help: <mailto:gentoo-user+help@lists.gentoo.org> List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org> List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org> List-Id: Gentoo Linux mail <gentoo-user.gentoo.org> X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Archives-Salt: 2deb5402-8950-4b11-a6ab-58c470406235 X-Archives-Hash: 56c7988c9f136b453a5025121a4011b1 On Mon, 31 Dec 2012 01:57:02 -0600 Dale <rdalek1967@gmail.com> wrote: > Walter Dnes wrote: > > On Mon, Dec 31, 2012 at 01:28:17AM -0500, wrote > >> * According to /usr/portage/x11-base/xorg-server/ChangeLog > >> USE="suid" has been enabled as of December 20, 2012. If you do > >> not enable it, you will not be able to run startx as a regular > >> user. xdm and other X login managers will still work. > > Let me re-phrase that. A USE="suid" flag has been created. If > > you do not enable it, you will not be able to run startx as a > > regular user. > > > > I checked here and it must be enabled in my profile. I don't have it > in make.conf or any other portage file that I edit. I use the KDE > profile for those who are wondering. It may save time > looking/checking it. It's not in the profile, the xorg-server ebuild sets USE="suid" on by default. Most likely is that Walter has USE="-suid" in his make.conf and sets it back on for things he's checked out personally. Meaning that in this case one slipped through. -- Alan McKinnon alan.mckinnon@gmail.com