Local users get to play root?
Seth Vidal
skvidal at fedoraproject.org
Wed Nov 18 22:40:37 UTC 2009
On Wed, 18 Nov 2009, Richard Hughes wrote:
> 2009/11/18 Jeff Garzik <jgarzik at pobox.com>:
>> And this enormous security hole of a policy change was done with next to
>> /zero/ communication, making it likely that many admins will not even know
>> they are vulnerable until their kids install a bunch of unwanted packages.
>
> F11 had retained authorisations, which arguably were more of a
> security weakness. If rawhide had been signed during the F12 cycle
> everybody would have seen this change much earlier.
>
> If you're deploying F12, then I really think you should know the
> basics about PolicyKit.
Richard,
to be fair, when I asked you how to edit a .pkla file you couldn't tell
me.
So, if our engineers don't know the basics, how should our users?
-sv
More information about the fedora-devel-list
mailing list