[X2go-dev] x2go security Issues
Moritz Struebe
Moritz.Struebe at informatik.uni-erlangen.de
Mon Feb 14 11:13:16 CET 2011
Hi there,
this should work: http://x2go.obviously-nice.de/deb/pool-heuler/
Cheers
Morty
On 2011-02-14 10:23, Kevin Moellering wrote:
> I've noticed that although you seem to have solved the security flaws
> in the database access the preinst script in the repository for lenny
> [1] has not been updated since late 2009. It still contains the
> command to give all users sudo root permissions on the x2togowrapper.
>
> I would appreciate to know some kind of time frame when you are
> planning to integrate the update into your repository, because we're
> planning to install x2go on around 50 hosts of a PC pool at the RWTH
> Aachen University. Since we do not want to go through the process of
> checking out new sources, building them and installing them now and
> then on every machine, we would like to use the deb-repository with
> apt-get and not some git based source repository.
--
Dipl.-Ing. Moritz 'Morty' Struebe (Wissenschaftlicher Mitarbeiter)
Lehrstuhl für Informatik 4 (Verteilte Systeme und Betriebssysteme)
Friedrich-Alexander-Universität Erlangen-Nürnberg
Martensstr. 1
91058 Erlangen
Tel : +49 9131 85-25419
Fax : +49 9131 85-28732
eMail : struebe at informatik.uni-erlangen.de
WWW : http://www4.informatik.uni-erlangen.de/~morty
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5867 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.x2go.org/pipermail/x2go-dev/attachments/20110214/9701df42/attachment.bin>
More information about the x2go-dev
mailing list