Security issues with abstract namespace sockets
Matt McCutchen
matt at mattmccutchen.net
Wed Jan 5 22:13:19 UTC 2011
On Wed, 2011-01-05 at 16:37 -0500, Daniel J Walsh wrote:
> [XDG_RUNTIME_DIR] does not exist until after the User has logged in. X starts before
> the user logs in. Also multiple users need to be able to talk to same
> xserver.
On Wed, 2011-01-05 at 16:47 -0500, Adam Jackson wrote:
> atropine:~% ssh 10.16.61.101
> test at 10.16.61.101's password:
> Last login: Wed Jan 5 16:42:43 2011
> [test at dhcp-10-16-61-101 ~]$ set | grep XDG
> [test at dhcp-10-16-61-101 ~]$ rpm -q systemd fedora-release
> systemd-15-1.fc15.x86_64
> fedora-release-15-0.3.noarch
>
> Console login at least gives me an XDG_SESSION_COOKIE.
Yes, I guess XDG_RUNTIME_DIR won't work in its current form, but it
should be easy enough for systemd to provide directories with the
necessary permissions at the necessary times. I think this is the right
solution.
--
Matt
More information about the devel
mailing list