On 08Nov2020 11:13, Dave Stevens <g...@uniserve.com> wrote: >On Sat, 7 Nov 2020 17:28:01 -0800 >jdow <j...@earthlink.net> wrote: ><stuff edited out> > >and then others wrote >"The current console user is generally allowed to reboot the system." > >why?? isn't that a giant security hole? just from mistakes, not to >mention malice.
Cannot the console user type Ctrl-Alt-Del anyway? So I'm not sure this is of itself a security hole. Except in as much as it relies of software correctly deducing the physical presence of the console user at the console, and mucking that up would indeed be a security hole. So I think of itself it seems half legit, but it increases the attack surface. Cheers, Cameron Simpson <c...@cskk.id.au> _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org