From kde-commits  Sat Aug 16 15:48:44 2003
From: George Staikos <staikos () kde ! org>
Date: Sat, 16 Aug 2003 15:48:44 +0000
To: kde-commits
Subject: Re: kdeutils/klaptopdaemon [POSSIBLY UNSAFE]
X-MARC-Message: https://marc.info/?l=kde-commits&m=106104882517260

On Sunday 10 August 2003 16:54, Volker Krause wrote:
> >    This defeats the whole purpose though.  It requires root privileges
> > because you don't want users to be able to do this.  Making a suid root
> > app allows anyone to do it.  I would have to consider this a security
> > hole in KDE.
>
> Sorry, my mistake: It is not installed as setuid root by default, you need
> to set it up the first time by supplying the root password. So, not
> everyone is allowed to change the performance settings by default.

  Unfortunately it requires the user to enter an all-or-none situation, where 
either everyone who uses the machine can do those things, or no-one except 
root can.  It's not an ideal solution.  Maybe an access list should be 
written to /etc with the UIDs that are allowed access.

-- 
George Staikos
KDE Developer				http://www.kde.org/
Staikos Computing Services Inc.		http://www.staikos.net/