If the owner of a UNIX box is dumb enough to log in as root to a command line session, and then starts dtlogin, anybody can then:
1. walk up to the machine
2. go to Command Line Login
3. press control-c to kill dtlogin
and 4. start doing things as root.
I suggest you remove the option to do a command line login. If a user wants a shell, they should log in and open a terminal.
The same thing could be done even without the option by vt switching.
The idea is that people won't do this. If you want to start dtlogin
like this, either do so at boot, or use the '-daemon' option and then
logout of your console shell session.
--
Jon Trulson
"Don't believe everything you read on the internet."
--Abraham Lincoln
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Yes, use OpenBSD. It uses Helvetica as CDE's default font, and it's much nicer than whatever Linux uses. Also, the OpenBSD build works better (application builder works and no weird buttons when right-clicking front panel icons), and OpenBSD is more secure than Linux in general :D
EDIT: You're already using OpenBSD? Try getting the latest CDE source and recompiling. Other than that, I can't help you :(
Last edit: vmlinuz719 2014-09-17
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
If the owner of a UNIX box is dumb enough to log in as root to a command line session, and then starts dtlogin manually, anybody can then:
and 4. start doing things as root.
I suggest you remove the option to do a command line login. If a user wants a shell, they should log in and open a terminal.
Last edit: vmlinuz719 2014-09-07
On Sun, 7 Sep 2014, mrlinux12321 wrote:
The same thing could be done even without the option by vt switching.
The idea is that people won't do this. If you want to start dtlogin
like this, either do so at boot, or use the '-daemon' option and then
logout of your console shell session.
--
Jon Trulson
"Don't believe everything you read on the internet."
--Abraham Lincoln
Oh, and I'm using OpenBSD. How do I get mailer and calendar working? Thanks!
On Sun, 7 Sep 2014, mrlinux12321 wrote:
Fix them and send patches :)
Personally, I think the mailer is a lost cause without major work.
Calander does work for some people I thought.
--
Jon Trulson
"Don't believe everything you read on the internet."
--Abraham Lincoln
Found a quick and dirty fix: add "/usr/dt/bin/rpc.cmsd" to /etc/rc.local. Now dtcm works :D
I don't want to hijack the thread, but since we're using the same OS, have you found a way to change the default font system-wide?
Thank you
Yes, use OpenBSD. It uses Helvetica as CDE's default font, and it's much nicer than whatever Linux uses. Also, the OpenBSD build works better (application builder works and no weird buttons when right-clicking front panel icons), and OpenBSD is more secure than Linux in general :D
EDIT: You're already using OpenBSD? Try getting the latest CDE source and recompiling. Other than that, I can't help you :(
Last edit: vmlinuz719 2014-09-17