Where's Konqueror in SU
Michal Jaegermann
michal at harddata.com
Thu Nov 5 18:28:25 UTC 2009
On Thu, Nov 05, 2009 at 12:14:44PM -0500, Jim wrote:
> >
> Would someone explain to me what is the detrimental difference between
> a Gui or command line, logging in to root from the same box .
Complexity. The more programs are involved the harder they become
to secure. With specialized tools that can be manageable and you
can tell that a trade-off of a small GUI is worth it but you are
talking about a "kitchen sink" application here.
> Most of the people that over reacted to question was they looked at
> Konqueror as a Web Browser, not realizing it is also a File Manager.
And also..., and also..., and ... Here is the issue. "Big" web
browsers are complicated beast and chances for forgotten "dark
corners" and unwanted/unexpected interactions grow exponentially
with size. Root should be much more careful as effects of a
hypothetical compromise are far reaching.
> 2. I'm not talking about using a Web Browser in this case, because that
> is just plain stupid.
In some sense you just answered your own question. You do use a web
browser too as you really do not have good ways to control what such
thing is doing behind your back.
Michal
More information about the fedora-test-list
mailing list