Mailinglist Archive: opensuse (1165 mails)

< Previous Next >
Re: [opensuse] Re: Should openSUSE review it's Security Policies?
  • From: Rasmus Plewe <rasmus@xxxxxx>
  • Date: Tue, 6 Mar 2012 09:21:39 +0100
  • Message-id: <20120306082139.GF12578@crash>
On Tue, Mar 06, 2012 at 08:35:07AM +0100, Per Jessen wrote:
Frans de Boer wrote:

[big snip]
Where are the people who care about normal
end-users who use the computer as a tool only.

+1. That is the one big question we need to worry about.

Oh, they are the people getting told "it's OpenSource, please send a
patch".

Look at this discussion, that shouldn't have been a discussion to begin
with. "A desktop user should be able to do desktoply things." He can
touch the hardware, so, from a technical point of view, what kind of
security is there, anyway?

Falling back in NT 4.0 design, where by default root priviliges are
neccessary to do reasonable work, surely cannot be the solution. Lock
down the server, but assume that a desktop is used by one person (at
most a family, with natural social control) who needs to do what he
wants. Like installing new software (hasn't been mentioned yet). Then,
if you want to, add a "corporate desktop" which ist something in
between.

The difference is: in server and corporate desktop scenario, you've got
admins who should know their stuff, you can rely on them to do fine
grained configuration. In the desktop for my grandma[0], you can't. She
can use other popular OSes without that admin knowledge, and she should
be able to do the same with openSUSE. Without requiring an admin to set
up the system for her. If that is not met, you won't get her as a user.
Or you will remain her 24/7 personal admin and support.


Rasmus

[0] She used to work e.g. in accounting before retirement. With computers.
So not a complete computer illiterate.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
This Thread
Follow Ups