Bug 2808 - Normal startup leaves X11 open to external users
Summary: Normal startup leaves X11 open to external users
Status: RESOLVED FIXED
Alias: None
Product: xorg
Classification: Unclassified
Component: Server/DDX/XQuartz (show other bugs)
Version: 6.8.2
Hardware: PowerPC Mac OS X (All)
: high major
Assignee: Torrey T. Lyons
QA Contact: Xorg Project Team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-03-25 08:42 UTC by monnier
Modified: 2007-11-22 13:01 UTC (History)
0 users

See Also:
i915 platform:
i915 features:

Attachments

Description monnier 2005-03-25 08:42:05 UTC 
When starting XDarwin from the Dock, the startup procedure does not seem to
setup an Xauthority cookie but instead it justs uses xhost which leaves the
server open to attacks from other users on the same machine.
Comment 1 Daniel Stone 2007-02-27 01:25:55 UTC 
Sorry about the phenomenal bug spam, guys.  Adding xorg-team@ to the QA contact so bugs don't get lost in future.
Comment 2 Jeremy Huddleston Sequoia 2007-11-22 13:01:54 UTC 
This is no-longer the case with current master and xorg-server-1.{2,4}-apple branches

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.