Re: Proposal for inclusion in desktop: gnome-screensaver

From: Dan Winship <danw novell com>
To: Rodney Dawes <dobey novell com>
Cc: release-team gnome org, William Jon McCann <mccann jhu edu>, JP Rosevear <jpr novell com>, desktop-devel-list gnome org
Subject: Re: Proposal for inclusion in desktop: gnome-screensaver
Date: Wed, 26 Oct 2005 12:22:01 -0400

Rodney Dawes wrote:

3. Unlocking the screen with the root password should do the same as
choosing switch users, and logging in as root. Not doing so is a privacy
and security issue, as it may allow root access to remote hosts, that
root normally does not have access to.

Typing the root password into gnome-screensaver (when a non-root user islogged in) should not do anything special at all, because theadministrator has no way of knowing that the "unlock dialog" isn'treally a trojan horse being run by the logged-in user, and so we reallyshouldn't give him any reason to type the root password into it.


-- Dan

Follow-Ups:
- Re: Proposal for inclusion in desktop: gnome-screensaver
  - From: Rob Adams

References:
- Proposal for inclusion in desktop: gnome-screensaver
  - From: William Jon McCann
- Re: Proposal for inclusion in desktop: gnome-screensaver
  - From: JP Rosevear
- Re: Proposal for inclusion in desktop: gnome-screensaver
  - From: Rodney Dawes

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]