All of NIXen. ~/.profile ~/.env ~/.xprofile Exploiting TMPDIR, /tmp race conditi... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		anthk 86 days ago \| parent \| context \| favorite \| on: X.org Security Advisory: multiple security issues ... All of NIXen. ~/.profile ~/.env ~/.xprofile Exploiting TMPDIR, /tmp race conditions, ~/.mailcap and mutt (I used that to get access to 'premium' binaries under restricted accounts). If you have Emacs you can do tons of stuff from a single account. And so on.

nurettin 86 days ago [–]

Not sure what mutt has to do with X. Maybe you replied to the wrong thread.

41throw-it 86 days ago | [–]

~/.xprofile

I agree in a little way to what you say, but if you can write .xprofile you can with no work escalate from the x socket.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact