Re: ABRT considered painful

ass the "useless annoyance" barrier and most people will remove it upon install, thus negating the reason it was created in the first place. Cheers, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Useless setroubleshoot alerts

n this is a bug, but I've not yet bz'd it, as I wanted to make sure that this is not "intended behaviour." Regards, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

;minute operation?" Perhaps. I'm just trying to point out that this is very, very far from "OMG LOCAL ROOT FOR EVERYONE" as implied in the original email. Regards, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

to install trusted software from trusted repositories? Moreover, even sudo doesn't ask me again if I invoke it within 5 minutes of using it (or however long it is). Regards, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

al console wanted to exploit their machine, this would be the hard way to do it. Regards, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

to remove packages vendor:The PackageKit Project vendor_url:http://www.packagekit.org/ icon: package-x-generic implicit any: no implicit inactive: no implicit active: auth_admin_keep So, not without a root password. Regards, -- McGill Universit

Re: Local users get to play root?

s out there without enough space in > /usr for the entire package set. That's kind of a silly exercise in what-ifs. The default anaconda partition scheme is /boot, , and /. If someone wanted to fill up the disk, they can just write to /tmp on a default install. Regards, -- McGill Universit

Re: Local users get to play root?

sers to install trusted software from trusted repositories is a sane security trade-off. Regards, -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

2009/11/18 Simo Sorce : > On Wed, 2009-11-18 at 13:19 -0500, Konstantin Ryabitsev wrote: >> This significantly limits the number of users with powers to install >> signed software -- almost to the point of where it sounds like a fair >> trade-off. If someone has physical

Re: Local users get to play root?

arch GUI-tool to automate the download of certain files Proceed with changes? [N/y] * Waiting for authentication.. The transaction failed: not-authorized, Failed to obtain authentication. [bu...@smaug ~]$ Let's calm down now, please. :) -- McGill University IT Security Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-devel-list

Re: Local users get to play root?

- almost to the point of where it sounds like a fair trade-off. If someone has physical access to the machine, then heck -- it's not like they don't already effectively "own" it. Not saying it's a good default policy -- but let's cool our heads. Regards, -- McGi

Re: Ubuntu shows updates / security updates on shell logins

re posting it on the *inside* of your door. :) If someone has shell access, they can always run "foo --version", so I don't think this introduces any security risks that aren't already posed by someone having a shell on your server. Cheers, -- McGill University IT Security Ko

Re: Switching python-setuptools to distribute

ils inside of the python stdlib and a fork of > setuptools being worked on. FWIW, as a former maintainer of the package, I'm all for the switch to distribute. Cheers, -- Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.re

Orphaning a few packages

n python-kiwi - Framework for Python GUI applications python-pgsql - Enhanced python interface to PostgreSQL yaz - Z39.50/SRW/SRU programs Have fun, and thanks! Cheers, -- Konstantin Ryabitsev Montréal, Québec -- fedora-devel-list mailing list fedora-devel-list@redhat.com https://www.redhat.co

Re: gnome trash

Bernie Innocenti wrote: > Disk /dev/sdb: 2055 MB, 2055208960 bytes > 221 heads, 2 sectors/track, 9081 cylinders I don't know where fdisk, the Linux kernel, or whatever come up with these kinds of geometries. They're almost universally non-bootable. -hpa -- H. Peter Anvin, Intel Open So