https://bugzilla.novell.com/show_bug.cgi?id=632737 https://bugzilla.novell.com/show_bug.cgi?id=632737#c22 --- Comment #22 from Will Stephenson <wstephenson@novell.com> 2011-03-31 15:49:47 UTC --- Nativespeakerization, and I never saw it written 'setUID': <sect3 id="tec.xorg-setUID" status="2011-03-31"> <title>Removing the Xorg setuid bit</title> <para> The setuid bit on <filename>/usr/bin/Xorg</filename> is needed for starting X as an unprivileged user, e.g., via <command>startx</command>. This method has been deprecated for years in favor of using a display manager. Modern environments rely on device ACLs and polkit privileges, which in turn depend upon consolekit tracking the active console, which is performed by the display manager.</para> <para> The actual security problem was fixed in the kernel. Removing the setuid bit is a preventive measurement against potential similar problems in the future. </para> <para> Users who depend on the old configuration can set the setuid bit themselves in <filename>/etc/permissions.local</filename> by removing the comment sign from the following line:</para> <screen>#/usr/bin/Xorg root:root 4711</screen> <para> and running <command>SuSEconfig --module permissions</command> afterwards.</para> </sect3> -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.