[X2Go-Dev] X2Go-Future
Moritz Strübe
Moritz.Struebe at informatik.uni-erlangen.de
Sun May 20 22:25:22 CEST 2012
Am 20.05.2012 14:37, Mike Gabriel schrieb:
> Pretty old kind of an Xorg and probably lacking quite a few security
> patches reported against Xorg upstream.
The thing to remember here is, that this isn't such an issue, as the
client side X-server should be up to date and the server side X-server
runns with the same privileges as your average application. Therefore -
for normal use cases - there no real advantage in attacking the server,
as your rights can not really be extended. Reducing these rights might
be an interesting approach to make x2go a bit safer with minimal effort,
though.
Cheers
Morty
More information about the x2go-dev
mailing list