X-Recipient: archive-cygwin@delorie.com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:message-id:date:from:to:cc:subject
	:in-reply-to:references; q=dns; s=default; b=jmTYep5QdFQIB7Uj5zW
	wHmFM1lLsVZTrEadsG4Vso73IOxkuSBHdZyzYOeZBHUORNZZwXzSFJ+GAeLB6afA
	nTdCh8rL5XYIwRmFqX8+94uy9qyWPjGSR6wLYHpDHKjmABujuUOyzka6t7DHLtwU
	APpzp4f8wHG5Is5k+BfHRmLg=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:message-id:date:from:to:cc:subject
	:in-reply-to:references; s=default; bh=bCHVRwso3uudwggwT5ONAJyMC
	M4=; b=GNFr+hB+8yYBWSdxSh38lxsmozFy9QImUh3YO7N8ZZtN6eoA+tcR4tJJj
	ZRqbczOx2JBxmsbglu9GxFgA9/GuQuRts57HqAY+T3V5gyejy7WlvhZGFrKb0a0K
	D15nEtIRd5i2hdppRIi3TChIsZEFwHJdez0vQtb062Iz/UadIk=
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Delivered-To: mailing list cygwin@cygwin.com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=0.2 required=5.0 tests=AWL,BAYES_50,RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.2 spammy=Voice, xlanuchexe, TrojanIt, UD:XLanuch.exe
X-HELO: TheWorld.com
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <22868.10096.929488.407450@gargle.gargle.HOWL>
Date: Wed, 28 Jun 2017 18:02:24 -0400
From: bzs@theworld.com
To: Erik Soderquist <ErikSoderquist@gmail.com>
Cc: cygwin <cygwin@cygwin.com>
Subject: Re: XLanuch.exe is a Trojan-It allows remote control of my pc without my knowledge or permission
In-Reply-To: <CACoZoo13PwvqZ6p6kuUAggTfBW0sF3absub0i7rFBXz50vLk5A@mail.gmail.com>
References: <CAPXRkNEx44KFypaqj+hjrF+r8Es-xSmBTCcT2PED7XSrAchGNw@mail.gmail.com>	<CACoZoo13PwvqZ6p6kuUAggTfBW0sF3absub0i7rFBXz50vLk5A@mail.gmail.com>
X-IsSubscribed: yes


I would also think about X11 permissions. Someone might be scanning
for activity on port 6000 (&c) and if they find something and it's not
locked down (see for example 'xhost(1)') it's trivial to just launch
X11 apps on your system which can cause all sorts of mischief.

-- 
        -Barry Shein

Software Tool & Die    | bzs@TheWorld.com             | http://www.TheWorld.com
Purveyors to the Trade | Voice: +1 617-STD-WRLD       | 800-THE-WRLD
The World: Since 1989  | A Public Information Utility | *oo*

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple