John Tapsell johnflux at gmail.com
Thu Apr 30 10:43:28 BST 2009

2009/4/30 Modestas Vainius <modestas at vainius.eu>:
> Hello,
> On 2009 m. April 30 d., Thursday 10:52:00 John Tapsell wrote:
>> Can you give a "user story"  for this?  A typical use case?
> I think you are exaggerating importance of root on a typical desktop machine.
> A typical user is not going to use root frequently so probability to infect
> the system and infect it within 15 minutes since the last sudo run is very
> small.

A malicious program simply needs to wait in the background until the
user has entered the root password.  Then it can elevate its
privillages to root.  The system doesn't need to be infected during
the 15 minutes, but at _any_ time previously.

>I'm willing to take this risk rather than be annoyed by password prompt
> when I need to execute several root commands in a row (or rerun the last
> command). On the other hand, extra security as default nevers hurts.

Again, could you give an actual example?  We are talking about the
graphical version only here.

John Tapsell

More information about the kde-core-devel mailing list