undefined | Better HN

0 pointsvbernat7y ago0 comments

Xauthority isn't fine-grained. Once you get a cookie, you haven't any restriction to what you can do with the X server.

0 comments

We could generate an "untrusted" cookie. This prevents clients using it from meddling with "trusted" clients.

It's not really fine grained and also doesn't prevent untrusted clients from meddling with one another, but seems like a starting point for someone inclined to add more security to X.

j / k navigate · click thread line to collapse

0 pointsvbernat7y ago0 comments

Xauthority isn't fine-grained. Once you get a cookie, you haven't any restriction to what you can do with the X server.

0 comments

mikedelfino7y ago

We could generate an "untrusted" cookie. This prevents clients using it from meddling with "trusted" clients.

It's not really fine grained and also doesn't prevent untrusted clients from meddling with one another, but seems like a starting point for someone inclined to add more security to X.

j / k navigate · click thread line to collapse