Sounds like something should definitely be done. If you read the xscreensaver site, he claims that xscreensaver is the most secure, because it uses X directly and doesn't depend on a higher level toolkit which, though prettier, might have a deep bug that causes the screensaver to abort and unlock the screen. But I think it would be acceptable to have the command be a configuration option as long as you document the security tradeoffs.
I believe SUSE was on the point of raising a CVE for this (and Andrea put in a change and then later reverted it) which if true would be something that would be a showstopper. On 08/02/2010 03:32 PM, PCMan wrote: > For locking the screen, is it acceptable to add options to lxsession > to execute some commands prior to suspend/hibernation? So we can > execute the locking command of either xscreensaver or > gnome-screen-saver, or others according to the settings? > > Is this an acceptable option? > > On Mon, Aug 2, 2010 at 2:46 AM, Julien Lavergne <[email protected]> wrote: >> Le dimanche 01 août 2010 à 19:37 +0400, Mikhail Maksimov a écrit : >>> Thanks, 'xscreensaver-command -lock' works just fine for deliberately >>> locking the screen. Is there an easy way to get the screen locked in >>> suspend-resume sequence? >> There is no integration of the lock screen option of the screensaver. I >> reported the bug to keep it in mind : >> https://bugs.launchpad.net/ubuntu/+source/lxsession/+bug/612332 >> >> Regards, >> Julien Lavergne >> >> >> _______________________________________________ >> Mailing list: https://launchpad.net/~lubuntu-desktop >> Post to : [email protected] >> Unsubscribe : https://launchpad.net/~lubuntu-desktop >> More help : https://help.launchpad.net/ListHelp >> > > ------------------------------------------------------------------------------ > The Palm PDK Hot Apps Program offers developers who use the > Plug-In Development Kit to bring their C/C++ apps to Palm for a share > of $1 Million in cash or HP Products. Visit us here for more details: > http://p.sf.net/sfu/dev2dev-palm > _______________________________________________ > Lxde-list mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/lxde-list > ------------------------------------------------------------------------------ The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm _______________________________________________ Lxde-list mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lxde-list
