Merge lp:~pitti/lightdm/write-user-files-as-user into lp:lightdm
Proposed by
Martin Pitt
Status: | Merged |
---|---|
Merged at revision: | 1145 |
Proposed branch: | lp:~pitti/lightdm/write-user-files-as-user |
Merge into: | lp:lightdm |
Diff against target: |
116 lines (+38/-12) 3 files modified
NEWS (+1/-0) src/dmrc.c (+15/-2) src/xauthority.c (+22/-10) |
To merge this branch: | bzr merge lp:~pitti/lightdm/write-user-files-as-user |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
LightDM Development Team | Pending | ||
Review via email: mp+75184@code.launchpad.net |
Description of the change
This drops privileges before writing ~/.dmrc and ~/.Xauthority instead of using
chmod(), to guard against symlink attacks and other potential privilege
escalation.
To post a comment you must log in.