The Musings of Chris Samuel

The Musings of Chris Samuel

The Thoughts and Feelings of a Melbourne Person

The Musings of Chris Samuel RSS Feed
 
 
 
 
« A namesake at LCA 2007 ?
You know when you’ve been Tangoed.. »

Samsung SCX-4200 printer driver security risk

Just to show what not to do when writing drivers, this just in from LWN:

A LinuxFR reader has sent out an alert (in French) about the Samsung SCX-4200 printer driver for Linux. It appears that the driver author had some trouble with the Linux permission model; the response was to make a few applications run setuid root. A quick look at the install script shows that the affected programs are xsane, xscanimage, and the major OpenOffice.org components. The script also replaces some CUPS executables and does some other fun things. This seems like code to avoid for anybody wanting to run a remotely secure system.

Ugh.

Posted on July 18th, 2007 under Linux, News, Security, SoftwarePrint This Post

RSS 2.0 feed • Both comments and pings are currently closed

Comments are closed.

Related Posts

Music

Spam Blocked

RSS ABC News

Blogroll

People

Sites

Recent Posts

Random Image

 
dsc_0016.jpg
 

Categories

Archives

Meta

Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Australia
Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Australia