Re: Privacy

[linas linas org (Linas Vepstas)]

On Tue, Mar 16, 2004 at 08:52:25PM -0500, Derek Atkins was heard to remark:
> linas linas org (Linas Vepstas) writes:
> 
> > On Fri, Mar 12, 2004 at 04:03:13PM -0500, Kevin T.Broderick was heard to remark:
> >> 
> >> As the most recent reply I've seen clearly outlined, it's quite 
> >> possible to create
> >> a user specifically for gnucash (or perhaps gnucash and other sensitive 
> >> files)
> >> and then su to that user (who is the only non-root user with access to 
> >> the files).
> >
> > Derek, and anyone else who is listening, the above is actually a good
> > enough idea to actually consider implementing.  It allows for a 
> > passwd-protected login to the app, and it allows the OS to handle
> > all of the 'other aspects' of security.  I'm cc'ing gnome-office,
> > as surely this comes up often enough for other apps as well ... 
> 
> Yes, but there isn't much for *US* to implement.  This is mostly
> a sysadmin setup issue.  Or at worst a documentation issue.

Um, well, sysadmin != my mom, and I myself am tired of sysadmin'ing.
Too much of it to do.  So I want to convert this into a gnome desktop
or KDE dekstop or Lindows or Xandros issue, where the default 
desktop admin tools set up this kind of config by default, and 
work with the user in maintaining this kind of a setup.  

Presumably, gnucash isn't the only app with these sorts of security
concerns, which is why a generic desktop security framework makes 
sense to me.

I should have cc'ed the desktop mailing lists ... 

--linas


-- 
pub  1024D/01045933 2001-02-01 Linas Vepstas (Labas!) <linas linas org>
PGP Key fingerprint = 8305 2521 6000 0B5E 8984  3F54 64A9 9A82 0104 5933