On Tue, May 22, 2012 at 11:07 PM, Ralf Lang <lang@b1-systems.de> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Your quoting seems off, sorry. I try to figure where to answer.
Am 22.05.2012 17:02, schrieb Marguerite Su:
On Tue, May 22, 2012 at 10:27 PM, Ralf Lang <lang@b1-systems.de> wrote:
personally I think we'd better separate standard Linux server environment from single-user home desktop environment. they're totally different....and desktop users are growing in recent years in our forums(openSUSE is almost the only usable distro for home use)
Apart from Gentoo, Ubuntu and all their derivatives, yes.
.< (lol)
eg: I would like YaST2 never ask me root password to install software, since it's my laptop and no one else can use it...but it'll surely be banned in a security expert's eyes, and I don't know how to adjust it for myself
Do you want this for user #1 or for any arbitrary "guest" type account? I don't want guests accounts to install software on MY system. That's why. But it should ask for your #rootable user# password, not for root password.
no. so I guess...guest account or account registration could be disabled?
actually no desktop users even use Windows Guest account, forever...
Wrong. It might be very uncommon outside the range of windows users I know but the typical windows notebook I see has two or three local accounts and another USED guest account. Let's talk about family computers, student computers, couple cases...
...yes. some students'/staff's computers can't even install software...actually.. family computers is a good example...but seems linux can't adjust security level per account? especially some actions requires root password....
(no flame war like Linus did, of course I defend and vote for openSUSE, but one comment in it is good for me: it's easier for security persons to enable it than grandma to disable it)
It's for grandma's pc where I want security over features. She isn't going to install software anyway. But I have to drive 200 Miles if something is broken with her "let's exchange recipes over facebook" use case just because guests or aggressive software installed obtrusive new features (or worse).
...lol. it's just someone else's comment on linus's G+...seems grandma is not a good example...everyone has enough such bad experiences.....I drive once...that is...1794 miles...just last year...
I don't care who said it. The case remains the same. Let's talk about cases, not about Linus or you personally. I'd rather have too much security for grandma than too many features.
I cited that to "prove" that we need different levels of security...not no security at all.
Let's have a yast module and an install option, not some mysterious rpm.
totally agreed.
- -- Ralf Lang Linux Consultant / Developer Tel.: +49-170-6381563 Mail: lang@b1-systems.de
B1 Systems GmbH Osterfeldstraße 7 / 85088 Vohburg / http://www.b1-systems.de GF: Ralph Dehner / Unternehmenssitz: Vohburg / AG: Ingolstadt,HRB 3537 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk+7q7sACgkQCs1dsHJ/X7CtQQCgiCu7lxkvwgZb+WxZBqoVmQfa Vt8AoIPjagd9JkTa6/yAcgtI3FPQlyKO =5+1r -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
-- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org