Mailinglist Archive: opensuse-features (93 mails)

< Previous Next >
[openFATE 314842] KDE control panel: local user settings only || YaST: root-level
Feature changed by: vazha vandan (vazhavandan)
Feature #314842, revision 4
Title: KDE control panel: local user settings only || YaST: root-level

openSUSE Infrastructure: Unconfirmed
Priority
Requester: Desirable

Requested by: Kalenz . (kalenz)
Partner organization: openSUSE.org

Description:
We should draw a clear distinction: the KDE control panel should be
about the desktop environment only (local user level only), and all
system (root-level) settings are YaST territory. This would mean: clean
up the KDE code to remove anything that 'invades'.
Moderate version: have a switch somewhere that says: "Allow access to
system settings from KDE control panel (asking for root password)",
switched off by default . It should be there for the benefit of KDE
users familiar with these tools, not as the default thing in the face
of openSUSE newcomers.

Business case (Partner benefit):
openSUSE.org: Having two control panels (KDE/YaST) is confusing and
unsafe.
Several threads in the forum address this issue, and several items on
openFATE have appeared, suggesting that we "merge" the two. A
historical understanding is needed: not all KDE users are on openSUSE;
YaST is the central root-level control panel of openSUSE (and not only
in the KDE environment). The KDE control panel started as a desktop
environment settings menu, but is now growing as the KDE developers try
to build an all-purpose system control panel, mainly targeted at
desktop/mobile users.
We can't blame the KDE folks for wanting to do this. However, in
openSUSE, it creates a situation that is:
* Confusing for newcomers, because there are two control panels and the
distinction is blurred;
* Insecure as things scale, because local-user and root settings are
thrown in together.
The distinction of a local-user privilege "desktop settings" control
panel (i.e., KDE settings) and a super-user "system settings" control
panel (i.e., YaST) is both sensible for security reasons, as it
prevents light-hearted use of the root password, and helpful for
newcomers, as it clearly marks the line between local and system
settings.
The current combination of:
1) Allowing KDE control panel to access system-level settings,
displaying only the Windows-style "password to confirm" dialogue,
2) Root password = local user password by default openSUSE installation
setting*,
3) Everybody Hates Apper --> and yet it runs by default,
is dangerous and stupid.
* this is not a security violation in the stricter sense, however, it
fails to teach newcomers an appreciation of the meaning and importance
of the "root user" on a Unix-like system (and by implication, becomes
insecure).

+ Discussion:
+ #1: vazha vandan (vazhavandan) (2013-02-24 16:13:09)
+ What do we do in case of other desktops like GNOME,LXDE,XFCE and even
+ E17 which is probably going to be shipped with 12.3 ? integrating YAST
+ with each DEs settings is going to be a huge task




--
openSUSE Feature:
https://features.opensuse.org/314842

< Previous Next >
List Navigation
This Thread
  • No further messages
References