diff options
author | George Lebl <jirka@5z.com> | 2003-08-20 19:37:46 +0000 |
---|---|---|
committer | George Lebl <jirka@src.gnome.org> | 2003-08-20 19:37:46 +0000 |
commit | 3196c37161400638236d23d44a386d14eeac257e (patch) | |
tree | fbf5cdf5130e4c7efc3f385a31d651851c7c38de /NEWS | |
parent | f4600fe83a11360fff2f3a3d0a8c638087d51123 (diff) | |
download | gdm-3196c37161400638236d23d44a386d14eeac257e.tar.gz |
sync some defaults and make lots of keys commented out in the standard
Wed Aug 20 12:13:04 2003 George Lebl <jirka@5z.com>
* config/gdm.conf.in, daemon/gdm.h: sync some defaults and make
lots of keys commented out in the standard config file so that
we can change the defaults later without users having to
install a new config file.
* daemon/xdmcp.c, daemon/cookie.c: Use glib's random functions
instead of rand where we need those pesky pseudorandom
numbers
* daemon/slave.c: cleanup for greeter restarting
* daemon/verify-pam.c: a bit of cleanup and set tmp_PAM_USER
to login if login is set, just in case pam is weird.
* gui/gdmsetup.c: when not running from within gdm itself
display "ghelp:gdm" on help
* docs/C/gdm.xml: minor updates
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 33 |
1 files changed, 31 insertions, 2 deletions
@@ -25,7 +25,8 @@ Ahh news... now capped at a higher number, but we also cap the time that is spent gathering the info at 5 seconds. -- Deal with main daemon crashes semi decently in the slave. +- Deal with hypothetical main daemon crashes semi decently + in the slave. - Try /dev/fd if /proc/self/fd isn't there for checking which FDs are open, should make this work on more platforms @@ -47,6 +48,14 @@ Ahh news... - Respect negative coordinates with "-0" in the theme +- Display help from the setup program if not running + from within gdm itself + +- The standard config file now has most keys commented out + so that the internal defaults are used and so that we can + change those defaults in the future without the user having + to update the config file. + - Improvements in the cookie generation. Doesn't use up all the system entropy but just uses the 16 bytes it actually needs (since we just need a 16 byte cookie). @@ -66,7 +75,27 @@ Ahh news... - Some soptimization to save a nanosecond or two -- Translation updates (FIXME) +- Translation updates (Wang Jian, Funda Wang, Christian Rose, Jordi Mallach, + Danilo Segan, Artur Flinta, Miloslav Trmac, Duarte Loreto, Kostas Papadimas, + Ales Nyakhaychyk, Laurent Dhima, Christophe Merlet, + Evandro Fernandes Giovanini, Metin Amiroff, Pauli Virtanen, Dafydd Harries) + +2.4.2.100 SECURITY ADDENDUM: + Was not part of the original release notes to give distributors a chance + to update. + +- SECURITY: Fixed CAN-2003-0547 which allows any user to read any + root readable text file on the system by making a symling from + ~/.xsession-errors + +- SECURITY: Fixed CAN-2003-0548, a crash when chosen host expires. + DoS only for XDMCP (XDMCP should however be confined to a 'trusted' + network anyway) + +- SECURITY: Fixed CAN-2003-0549, a crash if authorization key name + is shorter then 18 bytes (that is, not MIT-MAGIC-COOKIE-1) + DoS only for XDMCP (XDMCP should however be confined to a 'trusted' + network anyway) 2.4.2.100 stuff: |