[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-devel
Subject:    Re: Security hole (or feature ;) in KDE Screensavers
From:       Roberto Alsina <ralsina () unl ! edu ! ar>
Date:       1999-10-16 15:10:12
[Download RAW message or body]

On Sat, 16 Oct 1999, Markus Goetz wrote:

> Hi,
> 
> when i use a screen saver to protect my computer while i am away, anybody who
> wants to acess my computer needs the password.
> 
> But this is really NO PROTECTION ... if i do a startx from tty1, my X11 is on
> tty7 .. The one who wants acess to my account when i am away from my desktop
> does just have to press CTRL+ALT+F1, then he gets to the X11 Output where i
> used startx to start X11... so now he just has to press CTRL+C to kill X11 and
> has acess to my account and may type rm -rf $HOME ...
> 
> So why the hell is there a password protection in the kde screen savers if it
> is useless ???

If you have insecure habits, that's not our fault ;-)
This works the same for each and every screensaver in X.
Use "startx & exit" or use kdm.

 ("\''/").__..-''"`-. .         Roberto Alsina
 `9_ 9  )   `-. (    ).`-._.`)  ralsina@unl.edu.ar
 (_Y_.)' ._   ) `._`.  " -.-'   Centro de Telematica
  _..`-'_..-_/ /-'_.'           Universidad Nacional del Litoral
(l)-'' ((i).' ((!.'             Santa Fe - Argentina
                                KDE Developer (MFCH)
Not mad, but bound more than a madman is (Romeo and Juliet, Act I Scene II)

[prev in list] [next in list] [prev in thread] [next in thread]