On 02/22/2010 01:21 PM, Harshavardhana wrote:
On 02/22/2010 05:18 AM, Kunthar wrote:Hi Kunthar,Hi all, Check attached snapshots. I can right click and toggle fullscreen in firefox and can go anywhere. It is risky. Why don't you guys consider using python GUI? Kunthar_______________________________________________ Gluster-devel mailing list Gluster-devel@xxxxxxxxxx http://lists.nongnu.org/mailman/listinfo/gluster-devel The subject you are referring here is not a security issue but a clear cut case of disabling keys which will be done with the bug id . Also it is agreeable that you should have not been allowed access to terminal and closing full-screen window etc. which will be fixed. But in essence all live cd's or installation cd's have "root" access. If you have physical access to the box then its necessarily a sysadmins prerogative to not do "rm -rf /*" unless the idea is not to use the system. But if you see any root exploit or directory traversals from "webui" through a remote machine which could be considered as a security hole. Regards -- Harshavardhana http://www.gluster.com |
