Fedora Core 4 Test Update: NetworkManager-0.5.1-1.FC4.1
Peter Jones
pjones at redhat.com
Tue Jan 10 18:26:38 UTC 2006
On Tue, 2006-01-10 at 17:08 +0000, David Woodhouse wrote:
> On Tue, 2006-01-10 at 11:59 -0500, Christopher Aillon wrote:
> > Well, we live in the real world, not the linux world. For example, on
> > my personal, privately owned laptop, I want to access Red Hat's VPN and
> > its WEP keys. I store my keys in the keyring. It is not unreasonable
> > for me to allow my sister, or my girlfriend, or whatnot to use my laptop
> > at times. However, they do not get access to Red Hat's internal
> > network. They have their own unpriveledged user accounts on my laptop.
> > I don't see how this is an unreasonable situation in the real world.
>
> Yet those people, if they have accounts on your laptop, _can_ access Red
> Hat's internal network any time your laptop is connected. Because you
> haven't set up iptables to do per-user filtering, have you?
The premise here is obviously that he's not connected to the RH network
except when he's logged in as his user, and the other users neither
neither use his account nor access his laptop remotely.
I think we all agree that WEP keys should at least have the option of
being global. Let's all stop being didactic, argumentative lunatics
about our reasons why they should have some other mode as well.
--
Peter
More information about the fedora-test-list
mailing list