Welcome, Guest
Please Login or Register.    Lost Password?

Potential Security Problem in GO-Global/UNIX v2.1 keytables
(1 viewing) (1) Guest
Go to bottomPage: 1
TOPIC: Potential Security Problem in GO-Global/UNIX v2.1 keytables
#104
Potential Security Problem in GO-Global/UNIX v2.1 keytables 13 Years, 12 Months ago Karma: 2
The foreign-language keytables that were released with GO-Global for UNIX v2.1 include the 'DEBUG' keyword in many cases. This keyword will cause the X server to log (to the session log in the user's home directory) the translation of each keystroke. If the permissions on the log directory and the logs are not stringent enough, this could lead to a security problem as the logs will essentially contain a record of each keystroke typed by the user.

This problem will be fixed in a forthcoming release of GO-Global for UNIX, but in the meantime, administrators of GO-Global for UNIX installations should check their keytables in ${GOGLOBAL_ROOT}/etc/keytables/, and remove or comment out any "DEBUG" keywords in those keytables.

Troy
troy
Administrator
Posts: 231
graphgraph
User Offline Click here to see the profile of this user
Gender: Male Birthday: 01/14
The administrator has disabled public write access.
 
Go to topPage: 1
Moderators: troy, Andyl