Re: Gnome security

From: everett lsli com
To: <gnome-list gnome org>
Subject: Re: Gnome security
Date: Tue, 8 Feb 2000 17:48:43 -0600 (CST)

> From gnome-list-request@redhat.com Tue Feb  8 17:28:10 2000
>
> On Tue, 8 Feb 2000 everett@lsli.com wrote:
> 
> > 	Anyone have any thoughts about securing Gnome?  I want to restrict
> > access to Gnome to the console.  I know how to do this with the Xserver,
> > but the Gnome apps, such as the windows manager etc, listening to ports 1024 
> > and up make me nervous.  I searched the FAQ's and didn't find anything.
> 
> I also feel nervous about the listening on >1024 ports by default. I'm
> glad I'm not the only one. Actually, I think it's insanity, considering
> there _have_ been holes in the generic ORBit code.
> 
> I think you can limit listening sockets to UNIX domain sockets by placing
> a setting in a ".orbit" file or something. I'm sure someone will jump in
> and point out the correct syntax ;-)
> 
> Cheers
> Chris
> 

	Especially when CDE is notorious for being insecure.  Of course, it
	depends on rpc's and portmapper.  There should be some way of 
	globally controling ORBs so that they only listen to the loopback 
	adapter.
	
--
M. Everett Hinckley
Software Developer
Livermore Software Laboratories Intl.
281-759-3274 x13
everett@lsli.com

Follow-Ups:
- Re: Gnome security
  - From: Derek Simkowiak

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]