Where's Konqueror in SU

Michal Jaegermann michal at harddata.com
Thu Nov 5 18:28:25 UTC 2009

On Thu, Nov 05, 2009 at 12:14:44PM -0500, Jim wrote:
> >   
> Would someone explain to me what is the detrimental  difference between 
> a Gui or command line, logging in to root from the same box .

Complexity.  The more programs are involved the harder they become
to secure.  With specialized tools that can be manageable and you
can tell that a trade-off of a small GUI is worth it but you are
talking about a "kitchen sink" application here.

> Most of the people that over reacted to question was they looked at 
> Konqueror as a Web Browser, not realizing it is also a File Manager.

And also..., and also..., and ... Here is the issue.  "Big" web
browsers are complicated beast and chances for forgotten "dark
corners" and unwanted/unexpected interactions grow exponentially
with size.  Root should be much more careful as effects of a
hypothetical compromise are far reaching.

> 2. I'm not talking about using a Web Browser in this case, because that 
> is just plain stupid.

In some sense you just answered your own question.  You do use a web
browser too as you really do not have good ways to control what such
thing is doing behind your back.


More information about the fedora-test-list mailing list