On Sun, Nov 05, 2006 at 06:34:15PM +0100, Anders Johansson wrote: > On Sunday 05 November 2006 18:21, Christian Boltz wrote: > > Hello, > > > > Am Sonntag, 5. November 2006 13:53 schrieb Anders Johansson: > > > On Sunday 05 November 2006 13:48, Andreas Hanke wrote: > > > > [...] > > > > > > This is not so simple to decide. Zen-Installer supports the zmd > > > > permissions system so that people can use it without the root > > > > password on configured systems. This is a plus of Zen-Installer. > > > > > > This is something that should be added to opensuse-installer. > > > > NooooooooooooooooOOOOOOOOO! > > > > I consider the ZMD permission system broken by design > > (https://bugzilla.novell.com/show_bug.cgi?id=215619) > > and it would be fatal to add the same broken thing to > > opensuse-installer/updater. > > > > If you _really_ like the zmd permission system, please continue using > > zen-installer ;-) > > I like the fact that root can delegate some administrative tasks like > software > management to other administrators without their having to get the root > password > > That bug report is slightly strange, since it seems to say "if root does > everything, the system is safe" but role based administration has long been > deemed better by many > > If I, a hypothetical malicious hacker, gain access to your account, and you > do > stuff with sudo or su, you're already lost, since if I'm logged in to your > account, I can sniff your keyboard > > No security system is perfect, and if a cracker gains local access, you are > in > trouble. But if you can't trust the people you assign as admins, you have > bigger problems than computer security
Actually I would really delegate this to su wrappers, like sudo or kdesu instead of introducing yet another security model. Ciao, Marcus --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
