On 08/12/2016 01:52 PM, Raymond Wooninck wrote:
Based on the above, I guess that we have to start patching all the desktops in order to be run as root.
Guys, can you even read what you are actually writing. Yes, a normal user can not KILL a process that is running under another userid, which is fully correct.
However how is this related to initiate the "Shutdown", "Reboot", "Suspend" action from the desktop menu ?? Does an user have to provide root access for this ??? NO.
Actually it's a YES You aren't reading what we're writing. We are making it very clear that the heavily multi-user system I talk of has been heavily custom configured; for example the accounts i have on a few such machines have me in a chroot'd jail where there are many commands that I simply don't have. The sysadmins of such systems confgure them! The single user (e.g. laptop) system you describe has a much simpler setup and assumes a user who has some slight clue about system administration, but needs not have an in-depth understanding of the issues. Its better if that's configured OotB for that limit. The Greybeards and Gurus here are, to put it bluntly, not newbies or neophytes. Some of still adminster multi-user systems and don't want ordinary users, even users of KDE or Gnome DMs, to shut down the system. We will configure it that way regardless of what comes out of the box, regardless of what a zypper update brings. That is our job. Still more are 'retired' (is that possible?) from such positions. We still hack our configurations to our liking. Does a user have to provide root access ? Well, actually yes. You might try running the systemctl options from the command line on a system where there is no PAM or SUDO configured to let users do that. I plead guilty; I've hacked both PAM.d and /etc/sudoers; I'm in the wheel group and the video group and the audio group and the pulse group and the www group and the cdrom group and the vmbox group. So sue me! Do you think that possibly - HA HA HA - the KDE has a built-in SU mechanism that allows you to execute the /sbin/shutdown -h -P now when its set for "local" and "everybody" within KDE but not from the same user's VT login command line? What's the above? Well if you look 'under the hood' the shutdown of KDE uses that. So what is KDE doing that the command line version of exactly the same command isn't doing? Its in the configuration. And what do you want to bet that the people running admin at the large ISPs know more about it it than you or I and know how to turn that off so that KDE users can't shut down their system? Oh, you want something interesting? Try to shutdown while SMPlayer is showing a movie :) HA HA HA! -- There is no more cooperative group of people than a gang of boys who have been offered the chance to help legally destroy something. -- http://www.toxiccustard.com/vcr/03.html -- To unsubscribe, e-mail: opensuse-kde+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-kde+owner@opensuse.org