Mailinglist Archive: opensuse-kde (348 mails)
| < Previous | Next > |
Re: [suse-kde] KDE 3.2 and Linux security
- From: "Paul W. Abrahams" <abrahams@xxxxxxx>
- Date: Thu, 5 Feb 2004 17:55:31 -0500
- Message-id: <200402051755.32178.abrahams@xxxxxxx>
On Thursday 05 February 2004 5:00 pm, Mathias Homann wrote:
> Am Donnerstag, 5. Februar 2004 22:20 schrieb Scott Jones:
> > On Thursday 05 February 2004 14:49, Kai Fanslau wrote:
> > > A few days ago I executed an update to KDE 3.2 on my 9.0 Linux system
> > > by using the SuSE yast-sources. Everything went very well, but when I
> > > played a little with the KDE control center, I noticed a horrible
> > > effect: Suddenly every user was able to launch YaST without the need
> > > of typing in the root password.
> > >
> > > Does anyone here recognize these problems?
> >
> > No such problem here (SuSE 8.2).
I think it's possible to run Yast as an ordinary user without security
problems, since Yast will stop you if you actually try to do something that
requires root privileges.
Paul Abrahams
> Am Donnerstag, 5. Februar 2004 22:20 schrieb Scott Jones:
> > On Thursday 05 February 2004 14:49, Kai Fanslau wrote:
> > > A few days ago I executed an update to KDE 3.2 on my 9.0 Linux system
> > > by using the SuSE yast-sources. Everything went very well, but when I
> > > played a little with the KDE control center, I noticed a horrible
> > > effect: Suddenly every user was able to launch YaST without the need
> > > of typing in the root password.
> > >
> > > Does anyone here recognize these problems?
> >
> > No such problem here (SuSE 8.2).
I think it's possible to run Yast as an ordinary user without security
problems, since Yast will stop you if you actually try to do something that
requires root privileges.
Paul Abrahams
| < Previous | Next > |