aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorFrederic Lepied <flepied@mandriva.com>2004-07-29 23:50:14 +0000
committerFrederic Lepied <flepied@mandriva.com>2004-07-29 23:50:14 +0000
commit74e4fbb27d82186de2631bb17d33599361acdf78 (patch)
tree6e4563cee8ce1e4b744bf9d5f6466cca89d2a9a3
parent97eac88bd0465af2f91ecdfaf0c683b27122bcf5 (diff)
downloadmsec-74e4fbb27d82186de2631bb17d33599361acdf78.tar
msec-74e4fbb27d82186de2631bb17d33599361acdf78.tar.gz
msec-74e4fbb27d82186de2631bb17d33599361acdf78.tar.bz2
msec-74e4fbb27d82186de2631bb17d33599361acdf78.tar.xz
msec-74e4fbb27d82186de2631bb17d33599361acdf78.zip
document allow_xauth_from_root levels
-rw-r--r--doc/security.txt2
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/security.txt b/doc/security.txt
index be5ab30..aa4ea2e 100644
--- a/doc/security.txt
+++ b/doc/security.txt
@@ -111,6 +111,7 @@ in /etc/hosts.allow).
- network commands (ssh, scp, rsh, ...) restricted to the members of the ntools group.
- compilation commands (gcc, g++, ...) restricted to the members of the ctools group.
- rpm command restricted to the members of the rpm group.
+- forbid exporting X display when switching from root to another user
*******************************
Security level 5 ( Aka Paranoid system ) :
@@ -161,6 +162,7 @@ in /etc/hosts.allow).
- network commands (ssh, scp, rsh, ...) restricted to the members of the ntools group.
- compilation commands (gcc, g++, ...) restricted to the members of the ctools group.
- rpm command restricted to the members of the rpm group.
+- forbid exporting X display when switching from root to another user
******************