https://bugzilla.novell.com/show_bug.cgi?id=756189 https://bugzilla.novell.com/show_bug.cgi?id=756189#c0 Summary: Enhance Yast Security and User Module with Little Changes but Yielding a Great Outcome Classification: openSUSE Product: openSUSE 12.2 Version: Factory Platform: All OS/Version: openSUSE 12.2 Status: NEW Severity: Enhancement Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: scott@aphofis.com QAContact: jsrain@suse.com Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:11.0) Gecko/20100101 Firefox/11.0 My suggestions is simple and takes the form of an enhancement to the YasT module under 'Security and Users' 'User and Group Administration' 'Set Filter' Security Report being a new filter option. Right about now your thinking about why not add this to the existing Module of Security Centre and Hardening. Go for it – Open Security Overview and either configure secure file permissions or use the Predefined wizard type. Change the File Permissions to either 'secure' or 'paranoid' and watch the whole installation becoming both unusable and irreversible. I envisage the security filter to contain the following existing columns. 1. Security Equivalence 2. Login Disabled Y/N 3. System or Local /User 4. User not part of default installation and or User belongs to a group that was not part of a default installation 5. Description of what the user actually does 6. Description of consequence of deleting the user or group 7. (hidden) from which workstation on this subnet the information come from. Option 7 is based on the concept that a net admin could run this report and have every workstation on the subnet have its users and groups interrogated and extracted via SSH The report would interrogate ALL users, either Local, System AND from which workstation and provide a netadmin with the ability to secure all workstations on the subnet all in one report on one workstation. I will leave the possibility of the missus of this application and the option of writing changes back to any other workstation with you to ratify. Overall I think this is an easy, and extremely valuable tool when the majority of the IT community, world wide is focused on CC abuse and IP phone abuse. Reproducible: Always Steps to Reproduce: ENHANCEMENT Actual Results: ENHANCEMENT Expected Results: ENHANCEMENT I understand well the unlikely possibility that a user request would sightly Change/Enhance/Fix ANYTHING to do with Yast but I would like you to just give this enhancement a fair hearing and a fair evaluation on what this enhancement could do for all of Opensuse .....and Enterprise..but I did not say the Enterprise word what-so-ever -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.