zlacker

[return to "The Linux Security Circus: On GUI isolation"]
1. doki_p+o6[view] [source] 2011-04-24 01:29:07
>>wglb+(OP)
This argument is nonsense. Any program you run can exec other programs and read files from your home directory. You can't simply run any program you feel like running. If it's not a well known and trusted program, then you'll need to look at the source.

Do people run root GUIs as a client? That seems silly to me. I don't have one single GUI program that I run as root unless I'm troubleshooting a permissions issue.

◧◩
2. tzs+5f[view] [source] 2011-04-24 10:14:14
>>doki_p+o6
> Do people run root GUIs as a client? That seems silly to me.

When you need to su or sudo, do you switch away from X to a separate virtual console, or do you just do it in an xterm (or equivalent)?

How about when you want to ssh to a server and do something, possibly including su or sudo on the server. Again, do you do that from an xterm or equivalent on your desktop machine, or do you switch out to a separate virtual console for all your ssh activity?

[go to top]