Comment # 9 on bug 965473 from 
Dear Mr. Fink,

firstly I have to emphasize that I am neither a system-architect, designer nor
developer. I saw these in the practice. But i have seen some weird, risky and
dangerous thing nowadays: I could not order some root command as the shutdown,
reboot; the init command is only the last in the line. So I think we would not
let to integrate these commands and "weapons" onto the average system
workflows.

I think that the Linux based on root and average user ideology.
So I think that it should be FUNDAMENTAL to separate strictly the
- root (whole system setup, hardware and software, yast, server functionality)
- user (user level, login, separate desktops, client functions, program
installation) and
- session (one users' different desktops, hardware environment and user program
functionality)
levels.

If we build up a mass system and define different security and dependency
limits on the different levels and we want the lifting among the levels... it
results very risky and dangerous system.

For example:
1. If I the root and order a reboot command I do not want to see any system
workflow issues, only the clear shutdown and start. Also I do not want to see
ANYTHING which is able to hamper init 3 command. If it is possible at all, this
is a system approach problem, I think. I only want to setup, start, stop, etc.
the system or its functions without any doubt.
2. If I an average user I want to install some programs in my private
environment, choose desktops, install/use clients and build my different user
environments, lock the session, relogin and so on.
3. After all, if i want to use the computer, I login, open a session and use
browsers, developer tools, games, whatever... I do not want to jump to the
level 2 or level 1; just after finishing the session.

I think, it is possible to mix the 3 level in one system, but I think it would
be better to define the 3 level separately, its functionality, security and
dependencies. I have seen some sign in the Windows also.

In the end: sshd is only a program, it do not know who am I. The SYSTEM could
recognize me in every moment.
Naturally it is only my personal practical opinion, sorry for that.

You are receiving this mail because: