[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #34326] Ship a PolicyKit action to reboot into different OS

From: Vladimir Serbinenko
Subject: [bug #34326] Ship a PolicyKit action to reboot into different OS
Date: Wed, 29 Feb 2012 19:37:53 +0000
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.2) Gecko/20100101 Firefox/10.0.2 Iceweasel/10.0.2

Follow-up Comment #4, bug #34326 (project grub):

"PolicyKit simply provides organisation and a means by which unprivileged
users can perform privileged actions. "
"In short, it is a cool sudo :) "
This is exactly the problem. Allowing unprivilegied used to do something
additional without admin consent is a bad thing. You always have to make a
trade-off between security and convenience. While some distros are pretty
convenient some other take a die-hard pro-security side and in upstream we
shouldn't do anything to change it to more convenience, at least by default.
Also if we ship something like this we imply that using them is secure but in
fact the background are scripts and programs which may have undiscovered
security vulnerabilities.


Reply to this item at:


  Message sent via/by Savannah

reply via email to

[Prev in Thread] Current Thread [Next in Thread]