[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-core-devel
Subject:    Re: security vs. usability
From:       Michael Jarrett <yoamwmvs () umail ! corel ! com>
Date:       2001-02-06 21:31:54
[Download RAW message or body]

> It may force KDE code to be written cleanly, but it may also make
> KDE useability suffer until parts of KDE are re-written to provide
> the functionality in a safer way.  I also don't think it
> should be up to you to trade off useability for security  for my
> system, these are the determinations I need to make.  If you
> can devise a safer yet simple method of providing the equivalent
> of suid for some programs then you should do that and we would
> all be grateful, but until that is done I need to be able to do the
> things I've always been able to do.  Each person needs to be able
> to make these security useabilty decisions themeselves.

diald is a daemon that will create a PPP connection whenever it's
needed. That provides you with an alternative to suid PPP programs, as
was your example.

Alternatively you can set up new UID 0 accounts with new passwords.
kdesu will cache the passwords for the users, and you never have to
worry about it.
Hell, you're practically opening the door to root access anyways, no
reason to make it difficult for them.
-- 
The address in the headers is not the poster's real email address.  Do not send
private mail to the poster using your mailer's "reply" feature.  CC's of mail 
to mailing lists are OK.  Problem reports to "postmaster@umail.corel.com".  
The poster's email address is "michaelj@corel.com".

[prev in list] [next in list] [prev in thread] [next in thread]