Received: (at submit) by bugs.debian.org; 4 Feb 1997 19:56:30 +0000
Received: (qmail 19406 invoked from network); 4 Feb 1997 19:56:28 -0000
Received: from tekla.ing.umu.se (root@130.239.117.80)
  by master.debian.org with SMTP; 4 Feb 1997 19:56:27 -0000
Received: from tekla.ing.umu.se (bosse@tekla.ing.umu.se [130.239.117.80])
	by tekla.ing.umu.se (8.8.5/8.8.5) with SMTP id UAA13238
	for <submit@bugs.debian.org>; Tue, 4 Feb 1997 20:51:23 +0100
Date: Tue, 4 Feb 1997 20:51:23 +0100 (MET)
From: Bo Branten <bosse@ing.umu.se>
To: submit@bugs.debian.org
Subject: xterm is unnesesary suid to root
Message-ID: <Pine.LNX.3.95q.970204204110.12721A-100000@tekla.ing.umu.se>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII


Package: xbase
Version: 3.2-1.1

In debian xterm is suid to root. There are no reason for that since it can
get write access to the neded log files (/var/log/wtmp, /var/log/lastlog
and /var/run/utmp) with a proper sgid and group write access for the
log files.

A program should never be suid if it can be done with just sgid.


	/Bo Branten