![](https://seccdn.libravatar.org/avatar/0295f9d5d76379b5da73427b67acd395.jpg?s=120&d=mm&r=g)
Feature changed by: Jan Engelhardt (jengelh) Feature #310058, revision 3 Title: SUDO with sandbox -X integration openSUSE-11.3: Unconfirmed Priority Requester: Neutral Requested by: Sławomir Lach (lachu) Partner organization: openSUSE.org Description: Fedora team have developed sandbox -X, a tool allowing to run programs from desktop in sandbox, but still connected to X server. We should integrate this with Sandbox -X to avoid security holes by running some application as another user by sudo. Use Case: [code] sudo /sbin/yast2 [/code] Business case (Partner benefit): openSUSE.org: People are often using graphical tools as root on unprivileged user. PolicyKit is still not satisfied. + Discussion: + #1: Jan Engelhardt (jengelh) (2010-07-03 14:07:57) + What exactly are you trying to protect against when su-ing to root + anyway? -- openSUSE Feature: https://features.opensuse.org/310058