Guys, I noticed that we allow KDM to restart the system without asking for any pasword. This could lead to problems: it may happen that you let your applications run and lock the screen, and malicious user can go back to kdm by switch user, then shut down the system and killing all the ongoing work. In my opinion the default policy shouldn't allow this, since it is possible to specify that root password is required to shutdown from KDM.
-- Ing. Dott. Danilo Pianini Site: http://www.danilopianini.org/ Phone: +39 320 41 36 573 Skype: dany.sk
