[Bug 387706] New: wireshark administrator privilege requires AND Running as user "root" and group "root". This could be dangerous.
https://bugzilla.novell.com/show_bug.cgi?id=387706 Summary: wireshark administrator privilege requires AND Running as user "root" and group "root". This could be dangerous. Product: openSUSE 11.0 Version: Factory Platform: x86 OS/Version: openSUSE 11.0 Status: NEW Severity: Major Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: casualprogrammer@yahoo.com QAContact: qa@suse.de Found By: Beta-Customer After a clean network install & update from factory running wireshark from the gnome main menu results in an authentication box challenging with the root password. After that is entered a message box appears, stating that this could be dangerous. This doesn't look right somehow. wireshark-1.0.0-9 gnome-main-menu-0.9.10-13 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=387706 User coolo@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=387706#c1 Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.provo.novell.com |prusnak@novell.com --- Comment #1 from Stephan Kulow <coolo@novell.com> 2008-05-08 01:01:17 MST --- well, it can't run as user as it's sniffing. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=387706 User casualprogrammer@yahoo.com added comment https://bugzilla.novell.com/show_bug.cgi?id=387706#c2 --- Comment #2 from Casual J. Programmer <casualprogrammer@yahoo.com> 2008-05-08 01:20:28 MST --- That's not exactly what I suggest. If it is supposed to be forcibly run as root, then the message about how this is dangerous should be removed. As packeted software can only be installed by root anyway, this should be left to whoever installs it. There are quite a few packages that warn against running them as root ( I am too casual to understand the reasoning ), so there seems to be a valid case to run them as user. The proper solution would then be to create a group for this kind of application and add users that are supposed to run the software to that group. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=387706 User prusnak@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=387706#c3 Pavol Rusnak <prusnak@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |DUPLICATE --- Comment #3 from Pavol Rusnak <prusnak@novell.com> 2008-05-08 02:00:50 MST --- It was already discussed with security-team. They do not want to create another user group. *** This bug has been marked as a duplicate of bug 349782 *** https://bugzilla.novell.com/show_bug.cgi?id=349782 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com