Xserver needs to run as "root" on Linux / was: Re: [Xorg] Server side widgets
Jon Smirl
jonsmirl at yahoo.com
Tue Jul 13 12:54:54 PDT 2004
--- Sean Middleditch <elanthis at awesomeplay.com> wrote:
> > What's wrong with currently available Ctrl-Alt-Backspace? It would
> kill
> > such a malicious session and you will be sure the thing that shows
> up on
> > the screen is same thing somebody with root access have set.
>
> Nope. I can switch to a text console and write a script that
> launches a
> new X session with my fake login program in a loop. kill the X
> server,
> the script just relaunches it. Again, no way to tell if it's my hack
> or
> the real login server.
You need to use special keys that can't be intercepted by an app. An
app can intercept Ctrl-Alt-Backspace and draw a fake login screen. I
believe the only keys that can't be intercepted are Ctrl-Alt-Del and
SysReq. I'm not 100% sure about SysReq.
=====
Jon Smirl
jonsmirl at yahoo.com
__________________________________
Do you Yahoo!?
Yahoo! Mail Address AutoComplete - You start. We finish.
http://promotions.yahoo.com/new_mail
More information about the xorg
mailing list