[OpenAFS] ACLs and open-afs

Derrick J Brashear shadow@dementia.org
Fri, 11 Oct 2002 13:08:54 -0400 (EDT)


On Thu, 10 Oct 2002, Brent Johnson wrote:

> >if I want my home directory readable (so I can login without tokens) I run
> >the risk of having files like .Xauthority pop up, world readable, opening a
> >huge security hole.
> >
>
> Just for my info, why is this a huge security hole?

Watch as I connect to your X display and grab all the kesytrokes.