On Tue, 2009-11-24 at 10:44 -0800, Adam Williamson wrote: > As I noted somewhat flippantly in another thread, this comes with the > problem that, theoretically, a user who has the privileges to install > packages at a relaxed security level could arbitrarily raise the > security level of the system to a much higher level, against the wishes > of the administrator. > > perhaps something akin to system-config-selinux would be needed to guard > against this? I'm not sure how it could work in the PolicyKit framework, > though. or, I suppose more trivially, a PackageKit policy for the ability to install PolicyKit policy packages. heh, now that's a bizarre sentence. -- Adam Williamson Fedora QA Community Monkey IRC: adamw | Fedora Talk: adamwill AT fedoraproject DOT org http://www.happyassassin.net -- Fedora-security-list mailing list Fedora-security-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-security-list
