LinuxQuestions.org - Loop hole in slackware 14 run on virtualbox

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - Loop hole in slackware 14 run on virtualbox (https://www.linuxquestions.org/questions/linux-security-4/loop-hole-in-slackware-14-run-on-virtualbox-4175488966/)

lordadamson

12-23-2013 01:01 PM

Loop hole in slackware 14 run on virtualbox

I installed slackware 14 on virtualbox just playing around and testing different distros.

I found that I have to issue startx command everytime I log in to get KDE started up.

so I went to /etc/rc.d/rc.local

I added a path to a script that only contain "startx".

I rebooted the VM to test if that will work. and it did work, but lo, behold! once the system started, KDE started and I was logged in as root without having to provide a password!

isn't that a loophole? or am I missing something?

astrogeek

12-23-2013 01:10 PM

Quote:

Originally Posted by lordadamson (Post 5086035)

isn't that a loophole? or am I missing something?

Yep, missing a little something! ;)

Slackware boots to console, runlevel 3 by default.

Change the default runlevel to 4 in /etc/inittab to default to graphical login and start X.

astrogeek

12-23-2013 01:22 PM

Per your other thread here, starting X from the rc.local script will indeed start it as root - don't do that!

You should read the various README's and TXT files that come with Slackware, and I would also point you to any number of online resources for understanding the GNU/Linux boot process. This would be a good place to start, and this will address this specific configuration.

Good luck!

All times are GMT -5. The time now is 02:59 PM.