[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-bugs-dist
Subject:    Bug#14253: kmail html security bug
From:       George Staikos <staikos () kde ! org>
Date:       2000-11-02 17:17:30
[Download RAW message or body]

On Wednesday 01 November 2000 13:48, Andreas Pour wrote:
> OK, then can I add a "wishlist" item to this bug report?
>
> Maybe if KMail starts up and detects it's running as root it can pop up
> a dialog and say "It is recommended that you not run this program as
> root.  We recommend you forward your mail to another account.  To do
> this please select the user name from the list below and select
> "Forward"".  And there is a list of usernames from the /etc/passwd file
> and of course the possiblity to add your own.  If the user selects this,
> KMail creates the .forward file.
>
> I think this is a great solution and solves the problem that the KDE
> target audience (at least a great part of it) is not going to know what
> a .forward file is.

  Even better, only allow root to run if it is compiled with -DALLOW_ROOT.  
Otherwise, forcefully not allow it to be run as root.  Provide options for 
.forward/aliases instead.

-- 

George Staikos 

[prev in list] [next in list] [prev in thread] [next in thread]