zlacker

[parent] [thread] 3 comments
1. doki_p+(OP)[view] [source] 2011-04-24 01:29:07
This argument is nonsense. Any program you run can exec other programs and read files from your home directory. You can't simply run any program you feel like running. If it's not a well known and trusted program, then you'll need to look at the source.

Do people run root GUIs as a client? That seems silly to me. I don't have one single GUI program that I run as root unless I'm troubleshooting a permissions issue.

replies(3): >>recamp+c >>virapt+D7 >>tzs+H8
2. recamp+c[view] [source] 2011-04-24 01:40:35
>>doki_p+(OP)
I don't think it's nonsense. I'm quite surprised that (say) my calculator app could control my password manager. My password manager encrypts file storage, and automatically locks itself after usage, but is likely vulnerable to this attack.

Even if you trust the programs you run, they can have their own unintended vulnerabilities.

3. virapt+D7[view] [source] 2011-04-24 08:54:22
>>doki_p+(OP)
> Do people run root GUIs as a client?

No, but that's where escalation comes in. You go to a page which uses javascript to take over your browser. Now your browser can capture and send back your shell password captured from the terminal window.

4. tzs+H8[view] [source] 2011-04-24 10:14:14
>>doki_p+(OP)
> Do people run root GUIs as a client? That seems silly to me.

When you need to su or sudo, do you switch away from X to a separate virtual console, or do you just do it in an xterm (or equivalent)?

How about when you want to ssh to a server and do something, possibly including su or sudo on the server. Again, do you do that from an xterm or equivalent on your desktop machine, or do you switch out to a separate virtual console for all your ssh activity?

[go to top]