On 03/06/13 23:45, Holger Levsen wrote: > Hi Daniel, > > On Montag, 3. Juni 2013, Daniel Pocock wrote: >> I'm certain that I did not change the configuration of my system to >> prompt for these updates. > thats a gnome desktop? Yes, it is a default gnome desktop (I log in with Gnome classic)
> >> The system was updated from squeeze, it never did this under squeeze. > well, there are many new features in wheezy! :-) Like my first packages in a stable release >> Also, the popup gives no real clue about what it's doing or what it >> wants to install. At the very least, it should give a concise >> explanation of what will be installed if somebody enters their root >> password. > I agree but I thats wishlist or so. If it is a "wishlist" item, why did you just close it without any correspondence with the bug reporter rather than simply changing priority? Popups spontaneously asking for the root password in order to make unidentified changes to the system? If users start putting in their root password for random popups, it undermines the whole concept of UNIX security. It won't be long before some phishing attack is developed that produces a Javascript popup resembling the root packagekit popup. I saw this again on a desktop today, it was completely spontaneous and wasn't triggered by the connection of a USB device as it is on the laptop. You haven't provided any evidence that this is in fact a feature - is it being tracked upstream or elsewhere? I attach a screenshot of the offending popup.
<<attachment: 708548.png>>
