Mailinglist Archive: opensuse-factory (883 mails)
| < Previous | Next > |
Re: [opensuse-factory] Security or Convenience? Defining a better policy
- From: "Carlos E. R." <robin.listas@xxxxxxxxxxxxxx>
- Date: Tue, 22 May 2012 20:44:26 +0200
- Message-id: <4FBBDE8A.6060408@telefonica.net>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 2012-05-22 18:43, Claudio Freire wrote:
Hummmm.
Actually, on most systems sudo asks root's password, because nobody
configures sudo; and many documentations tell novices to do "sudo
something" which will work because it is in the default, unconfigured state.
It is no so simple to differentiate. And even with software from the oss
repo you can break an installation, like forcing install sendmail when
postfix is already running well.
- --
Cheers / Saludos,
Carlos E. R.
(from 11.4 x86_64 "Celadon" at Telcontar)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk+73ooACgkQIvFNjefEBxqyawCeMZID9LeWi4M25xx4Xk7bnxeJ
uBsAmgIabtWLzJtuYp6EzN6IkqsHxNUp
=SJHn
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx
Hash: SHA1
On 2012-05-22 18:43, Claudio Freire wrote:
As sudo asks *your* password, those tools that handle wifi, printers
and such should also ask the user's password, and check whether the
user has permission to administer wifi, printers, and such.
Hummmm.
Actually, on most systems sudo asks root's password, because nobody
configures sudo; and many documentations tell novices to do "sudo
something" which will work because it is in the default, unconfigured state.
Also, installing software from configured repos is not the same,
security-wise, to installing software from source or from untrusted
repos.
It is no so simple to differentiate. And even with software from the oss
repo you can break an installation, like forcing install sendmail when
postfix is already running well.
- --
Cheers / Saludos,
Carlos E. R.
(from 11.4 x86_64 "Celadon" at Telcontar)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk+73ooACgkQIvFNjefEBxqyawCeMZID9LeWi4M25xx4Xk7bnxeJ
uBsAmgIabtWLzJtuYp6EzN6IkqsHxNUp
=SJHn
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx
| < Previous | Next > |