https://bugzilla.novell.com/show_bug.cgi?id=632737
https://bugzilla.novell.com/show_bug.cgi?id=632737#c22
--- Comment #22 from Will Stephenson 2011-03-31 15:49:47 UTC ---
Nativespeakerization, and I never saw it written 'setUID':
<sect3 id="tec.xorg-setUID" status="2011-03-31">
<title>Removing the Xorg setuid bit</title>
<para>
The setuid bit on <filename>/usr/bin/Xorg</filename> is needed for starting X
as an unprivileged user, e.g., via <command>startx</command>. This method has
been deprecated for years in favor of using a display manager. Modern
environments rely on device ACLs and polkit privileges, which in turn
depend upon consolekit tracking the active console, which is performed by the
display manager.</para>
<para>
The actual security problem was fixed in the kernel. Removing the
setuid bit is a preventive measurement against potential similar
problems in the future.
</para>
<para>
Users who depend on the old configuration can set the setuid bit themselves
in <filename>/etc/permissions.local</filename> by removing the comment sign
from the
following line:</para>
<screen>#/usr/bin/Xorg root:root 4711</screen>
<para>
and running <command>SuSEconfig --module permissions</command>
afterwards.</para>
</sect3>
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.