Re: Proposal for inclusion in desktop: gnome-screensaver

Rodney Dawes wrote:
3. Unlocking the screen with the root password should do the same as
choosing switch users, and logging in as root. Not doing so is a privacy
and security issue, as it may allow root access to remote hosts, that
root normally does not have access to.

Typing the root password into gnome-screensaver (when a non-root user is logged in) should not do anything special at all, because the administrator has no way of knowing that the "unlock dialog" isn't really a trojan horse being run by the logged-in user, and so we really shouldn't give him any reason to type the root password into it.

-- Dan

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]