On Sunday 05 November 2006 18:21, Christian Boltz wrote: > Hello, > > Am Sonntag, 5. November 2006 13:53 schrieb Anders Johansson: > > On Sunday 05 November 2006 13:48, Andreas Hanke wrote: > > [...] > > > > This is not so simple to decide. Zen-Installer supports the zmd > > > permissions system so that people can use it without the root > > > password on configured systems. This is a plus of Zen-Installer. > > > > This is something that should be added to opensuse-installer. > > NooooooooooooooooOOOOOOOOO! > > I consider the ZMD permission system broken by design > (https://bugzilla.novell.com/show_bug.cgi?id=215619) > and it would be fatal to add the same broken thing to > opensuse-installer/updater. > > If you _really_ like the zmd permission system, please continue using > zen-installer ;-)
I like the fact that root can delegate some administrative tasks like software management to other administrators without their having to get the root password That bug report is slightly strange, since it seems to say "if root does everything, the system is safe" but role based administration has long been deemed better by many If I, a hypothetical malicious hacker, gain access to your account, and you do stuff with sudo or su, you're already lost, since if I'm logged in to your account, I can sniff your keyboard No security system is perfect, and if a cracker gains local access, you are in trouble. But if you can't trust the people you assign as admins, you have bigger problems than computer security --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
