On 11/18/2009 03:06 PM, Peter Jones wrote: > On 11/18/2009 02:35 PM, Casey Dahlin wrote: >> On 11/18/2009 02:32 PM, Casey Dahlin wrote: >>> On 11/18/2009 01:19 PM, Konstantin Ryabitsev wrote: >>>> >>>> I may be wrong, but I understand that this behaviour of PackageKit >>>> only applies to users with direct console access (i.e. not remote >>>> shells). So, only users that are logged in via GDM or TTY would be >>>> able to perform such tasks. >>>> >>> >>> That's a silly thing to imply we can control. Just because firefox is >>> running on a local console doesn't mean that a vulnerability therein has >>> not allowed it to be ultimately controlled from elsewhere. >>> >>> --CJD >>> >> >> Addendum: Why do you think sudo would ask an already-logged-in user for his >> password? > > Because the config file says to. > Good sort of answer when speaking about chickens and roads. A bit too existential for system administration though.
--CJD -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list
