On Fri, Mar 07, 2008 at 01:41:12PM -0600, Brian Cameron wrote: > Nicolas Williams wrote: > >On Fri, Mar 07, 2008 at 12:44:13PM -0600, Brian Cameron wrote: > Let me explain more clearly.
I'd understood. > However, it is probably less work to embed features into the > lock screen program than to add new programs into the Trusted > Path, I'd think. Has anyone looked at what it would take to do the latter? > >Text-to-speech cannot be avoided. Orca will have to be part of the > >trusted path. > > I don't think this is the case if the dialog passes strings to > the userland eye-candy program and these are passed along to > orca. Since the lock screen dialog and PAM have control over > the strings displayed, we know no sensitive information would > ever be passed along. The only way this would happen is if > PAM passed a message back saying your password or something, > which should never happen. The question becomes: can having access to the user's xauth (or to the session's DBus, or whatever) allow a process to modify those strings. If the answer is yes, then that needs to be fixed. I'm guessing __wildly__ that it will be easier to make all the a11y infrastructure part of the trusted path. > >Same thing for sticky/repeat/slow/bounce/mouse keys. > > Since these features are provided by the Xserver, you should > be able to do things like hit the shift key 5 times to automatically > enable StickyKeys, or whatever hitting the shift key 5 times > enables. Ah, that's good news. > >>4) Some ability for the dialog to detect and honor whatever > >> theme is being used by the user, so if they are using a high > >> or low contrast theme, this isn't lost when they go to the > >> lock screen dialog. Perhaps the userland eyecandy program > >> could communicate the theme to the background daemon. > > > >Themes are not an a11y requirement, are they? > > Yes, users with low vision require a High Contrast Theme, for > example. However, GTK+ theming support is a part of GTK+ and > should not add anything more to the Trusted Path. I imagined that contrast would be the issue here (I myself prefer reverse video type theming), but I wasn't sure.
