Mailinglist Archive: opensuse-factory (883 mails)

[Claudio Freire <klaussfreire@xxxxxxxxx>]

On Tue, May 22, 2012 at 2:46 PM, Bryen M Yunashko <suserocks@xxxxxxxxx> wrote:
> We're still thinking hypotheticals here IMO and not addressing very
> specific items.  Some kind of list with 3 columns:  1) Yes keep secure,
> 2) Maybe and 3) Duh! open it up!.   :-)

In that vein, it should be noted that even printers are security-critical.

Imagine an attacker could reconfigure your printers (ie: by making you
run some malicious javascript or something like that) so that every
document you print goes to an external server - he'd know everything
you do, which would be a *very* serious breech in an enterprise
context.

Same goes for wifi and network in general.

So even if users can be given permission to change printer/network
settings, it ought to require explicit authorization in the form of a
password prompt (prompting the user's password, not root's).
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx