Bugtraq: Reminder for irix ppl

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Reminder for irix ppl

From: nafees () STONO CS COFC EDU (Nafees Bin Zafar)
Date: Wed, 14 May 1997 13:04:33 -0700


The following has been used, abused, and exploited like mad, however a
little reminder may not hurt.  In the default setup for irix boxes, xhost
is set to global access whenever someone logs in on console (or invokes
xdm).  There may be some good reason for this default behavior, however
it's often a nuissance in situations where one is around a lot of immature
ppl just waiting to xdisplay '/usr/bin/X11/endsession -f' to your console.

This system-wide default is set in config files residing in /var/X11/xdm
You will probably need to edit the files:
        Xsession
        Xsession.dt
        Xsession-remote
But to be sure, just grep for xhost, and change it to 'xhost -' where
needed.

On a slightly different beat, perhaps SGI will consider changes the
default settings, in either case I'd be interested in finding out why it
is the default behavior.

hope i helped someone......

-n

                                                ------Nafees Bin Zafar
                                                <binzafn () musc edu>
                                                <nafees () cs cofc edu>

                http://www.cs.cofc.edu/~nafees

By Date By Thread

Current thread:

Reminder for irix ppl Nafees Bin Zafar (May 14)
- Re: Reminder for irix ppl Mike Neuman (May 15)
- Vulnerability in Elm-ME+ John Goerzen (May 15)
  - Re: Vulnerability in Elm-ME+ Kari E. Hurtta (May 17)
  - Finally, most of an exploit for Solaris 2.5.1's ps. Joe Zbiciak (May 17)
    - Re: Finally, most of an exploit for Solaris 2.5.1's ps. Adam Morrison (May 19)