On 08Nov2020 11:13, Dave Stevens <geek@xxxxxxxxxxxx> wrote: >On Sat, 7 Nov 2020 17:28:01 -0800 >jdow <jdow@xxxxxxxxxxxxx> wrote: ><stuff edited out> > >and then others wrote >"The current console user is generally allowed to reboot the system." > >why?? isn't that a giant security hole? just from mistakes, not to >mention malice. Cannot the console user type Ctrl-Alt-Del anyway? So I'm not sure this is of itself a security hole. Except in as much as it relies of software correctly deducing the physical presence of the console user at the console, and mucking that up would indeed be a security hole. So I think of itself it seems half legit, but it increases the attack surface. Cheers, Cameron Simpson <cs@xxxxxxxxxx> _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
