https://bugs.kde.org/show_bug.cgi?id=476988
--- Comment #4 from Fabian Vogt <fab...@ritter-vogt.de> --- (In reply to Nate Graham from comment #3) > (In reply to Fabian Vogt from comment #2) > > > However the openSUSE packagers have patched out PolKit support in Kate, > > > causing you to need to turn to this workaround. > > > > Well, *had* to... Please file a bug report downstream and compain to the > > security team. > > I've talked to them in the past about this, and while I understand their > perspective regarding potential security vulnerabilities in Polkit and > Kate's implementation of it, what I don't understand is removing the feature > in favor of re-adding the ability to open a GUI app as root that had been > deliberately disabled before. That just re-opens a bigger vulnerability. It > feels a bit like saying, "the door to your house is insecure, so we welded > the door shut and removed a window so you can enter that way instead". I asked for that explicitly to show how their policy and decision backfires and ultimately makes it worse - but it led nowhere... > Anyway, this is a conversation for elsewhere. :) Yep. -- You are receiving this mail because: You are watching all bug changes.
