From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-174492-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 81CCE139084
	for <garchives@archives.gentoo.org>; Fri, 16 Dec 2016 20:39:57 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 55E3E21C08F;
	Fri, 16 Dec 2016 20:39:44 +0000 (UTC)
Received: from mail-qt0-x243.google.com (mail-qt0-x243.google.com [IPv6:2607:f8b0:400d:c0d::243])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id E97F621C012
	for <gentoo-user@lists.gentoo.org>; Fri, 16 Dec 2016 20:39:43 +0000 (UTC)
Received: by mail-qt0-x243.google.com with SMTP id n34so12228317qtb.3
        for <gentoo-user@lists.gentoo.org>; Fri, 16 Dec 2016 12:39:43 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to;
        bh=2ANBRAYR1PGBrThJXNBzJAb5ous9z6L8yafR4XSIKEY=;
        b=Ctgh6eW4beTvcK5WB4skaPTL9UcuVrKV19Slk806bUKcbcgG6akm6MiGAxv7UVc7Vr
         SnijMbTyavg3wk3h8w0JQ+ldGTVTTr50co0NZwNRg3/mdry6P22IFGQBf1QGLT/Cb8I8
         UGX8MjhiWQ3lpPPfqyCFQhnTE8v/+rNg8jgNUqtsYWtl+ftgIyGvGRe41/iMmE3gxSTT
         CPnEyZV0o835PIO8aNFphxA4DS1/E+ZUVAELERrguvnnfKxVAvw78Zz7jhaA63PxfIts
         QHs7guluR2qoNMpVT0qccgH0xoxKI5sFUwtwGtkU0K+xP4LZcpSUxMpNHKFH5Ystqqdv
         uH+g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to;
        bh=2ANBRAYR1PGBrThJXNBzJAb5ous9z6L8yafR4XSIKEY=;
        b=H5C7q+BE136ajgPdKU6EV8gypoJEIPml49Fjjm2RfmhUTpXMDgaDgA2f2I5ErE9F5f
         dFrQneAoOB+VddM013ubsHrU6kElHCwNlNS25twFtf0Ies+tleWnC3EF3Hg9evUB85Jp
         CJn90z8n/xlCioszoSe/Q8+Khch0QAYusF1oV5GcHBG7EgUaT0zxzq/Gu2IvT1Gbs0HP
         35bbw2YHdIdkHb93r+84+o1SvvAMOB5U9cCNVjiGfnexv9IXrgeymqhw46mST+rpBtFO
         tdSO4/5U/99qHGLIAlfaWaii3u8xLB/gxAI7qNT0AslpefK/xlSl0tD5UHbITMpHDqxT
         2+TQ==
X-Gm-Message-State: AIkVDXK8P+36hOwJlnqG/0V6tD0Po+EejiudOoomWWxf++Pn9OnnX+ztzgtpfNiot8+WPovWWSDW/gLC8pKZ6w==
X-Received: by 10.200.36.246 with SMTP id t51mr4579308qtt.125.1481920783112;
 Fri, 16 Dec 2016 12:39:43 -0800 (PST)
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Sender: freemanrich@gmail.com
Received: by 10.140.34.73 with HTTP; Fri, 16 Dec 2016 12:39:42 -0800 (PST)
In-Reply-To: <20161216200653.25353.338C11D1@matica.foolinux.mooo.com>
References: <20161015182743.GB4541@solfire> <20161216101951.GA29887@g0n.xdwgrp>
 <CAGfcS_k+toE5DiWMPZrbnFqnJwVuQQ73B-rAmYeGTeyE-WKzBQ@mail.gmail.com>
 <20161216131315.GA4052@g0n.xdwgrp> <CAGfcS_=LvKf+pbq1Pfs_RfNUB76yFHz3Dv-FK0ZdFAMt_mAbYQ@mail.gmail.com>
 <20161216165118.GA26704@g0n.xdwgrp> <CAGfcS_=UDb35V==i5Ma3K6pNBBSyU0Ecp7_u97ZOYSfj-AwnqQ@mail.gmail.com>
 <20161216200653.25353.338C11D1@matica.foolinux.mooo.com>
From: Rich Freeman <rich0@gentoo.org>
Date: Fri, 16 Dec 2016 15:39:42 -0500
X-Google-Sender-Auth: fuCwqGC8N66Rse_hi38BLgXghmI
Message-ID: <CAGfcS_=-6pB6pAzNkmxrNhV=0Jd9F0+4uC5ZvnqigNi-N=CzRA@mail.gmail.com>
Subject: Re: [gentoo-user] Re: from Firefox52: NO pure ALSA?, WAS: Firefox
 49.0 & Youtube... Audio: No
To: gentoo-user@lists.gentoo.org
Content-Type: text/plain; charset=UTF-8
X-Archives-Salt: 1faa66b0-3a75-4569-af0e-1a5c1d78091c
X-Archives-Hash: ce9f3aee4f4a108b32eeffa50feca04c

On Fri, Dec 16, 2016 at 3:12 PM, Ian Zimmerman <itz@primate.net> wrote:
> On 2016-12-16 14:16, Rich Freeman wrote:
>
>> If you don't have USE=-suid on your xorg-server package, then X is
>> probably running suid root.
>>
>> In order to not have it run this way you need support for kernel
>> modesetting.  I was surprised when I found out that X11 even worked
>> that way (we're talking late 90s here).  It seems a bit like running
>> pppd as root so that it can directly talk to a UART because you have
>> an aversion to using /dev/ttyS*.  In any case the kernel devs have
>> generally been making the move to kernel modesetting so that your
>> device drivers actually are in the kernel and not in random userspace
>> programs (I'm all for microkernels, but not like this).
>>
>> If you don't have kernel modesetting enabled then X11 won't be able to
>> run with -suid set.  Google for gentoo kernel modesetting for a guide
>> on how to enable it on most modern hardware.
>
> There's another dimension to this dilemma: if one wants to avoid using a
> display manager and start X server directly (or via startx or similar),
> then the X server must be suid for that reason, even with KMS.
> Unfortunately.
>

I've never had issues starting X using startx on a radeon using kms,
and my server is not suid.  Offhand I couldn't say why you've had
issues with it, I haven't really looked into it in detail.

-- 
Rich