Re: User Experience improvements for Anaconda

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sun, Nov 28, 2010 at 10:26:59 -0500,
  Chuck Anderson <cra@xxxxxxx> wrote:
> 
> It is more risky to run more code as root than to run less.  Logging 
> into a graphical desktop as root means /everything/ runs as root, from 
> the window manager to the browser and everything in between.  This is 
> much more risky than just running a command or shell as root using 
> sudo or su.

Not as much better as you might think. If the user account gets compromised
(as opposed to cases where you make a mistake with a command), then later
when it swiitches to root the malware can use the root credentials to do
other bad stuff. This may give you time to notice the problem and requires
the malware to be more complicated. The more complicated malware only needs
to be written and distrbiuted once.

_______________________________________________
Anaconda-devel-list mailing list
Anaconda-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/anaconda-devel-list


[Index of Archives]     [Kickstart]     [Fedora Users]     [Fedora Legacy List]     [Fedora Maintainers]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]
  Powered by Linux