(Hey Burke--I'm not sure if you've been intentionally replying to me
instead of the mailing list? If you want it to go to the list (which I
think you should!), you need to make sure the ltsp-discuss address is on
your email!)
Burke Almquist wrote:
On Apr 7, 2006, at 11:16 AM, Ken Tanzer wrote:
I'm not sure I understand this. The "security risk" you mention comes
from me walking away from my machine. It doesn't matter whether I go
for an ice cream cone, or to another machine to log in. If you're
saying it's good security practice to log out of your machine when
you walk away, I supposed I'd agree with you. But that seems like a
separate issue.
That IS what I was getting at.
For that matter, perhaps I have taken care of that by using one of
these annoying "lock screen until password" screensavers.
That would alleviate most of the security issues, but unless it takes
significantly longer to log out and in why would it matter which you
choose to do?
Screensavers happen automatically. Logging out takes conscious effort.
(As a side note, it's unfortunate that not all programs are
session-aware. If they were, my ideal "screensaver" would be "logout."
This would be _great_ for shared machines.)
Once my machine is left unattended, I don't see how logging into
another machine adds any security issues. It might be a nice feature
to have a choice of connecting to my existing session (a la VNC and
rdesktop--there's a thread going around about this), or to spawn a
new session, but I still don't see the security aspect.
As for bugs and features, given the rock-solid multiuser heritage of
Unix systems, I tend to see anything that imposes 1-per-user or
1-per-server limitations as much more likely to be a bug than a feature.
I definitely see your point here, it's very possible that one could
have a legitimate use for having more than one GUI session open at a
time. Even if it seems unlikely in a "default" scenario.
begin:vcard
fn:Kenneth Tanzer
n:Tanzer;Kenneth
org:Downtown Emergency Service Center;Information Services
adr:;;515 Third Avenue;Seattle;WA;98104;USA
email;internet:[EMAIL PROTECTED]
title:Director of Information Services
tel;work:(206) 464-1570 x 3061
tel;fax:(206) 624-4196
x-mozilla-html:TRUE
url:http://www.desc.org
version:2.1
end:vcard
