D12732: Implement a more user-friendly run-as-root-or-sudo behavior
Nathaniel Graham
noreply at phabricator.kde.org
Mon May 7 21:07:42 BST 2018
ngraham added a comment.
In D12732#259342 <https://phabricator.kde.org/D12732#259342>, @nicolasfella wrote:
> > Did anybody ever submit an X11 patch? We don't hack around problems, we fix them.
>
> This is nothing a patch can fix. This is a fundamental design flaw of the X11 protocol and one of the major reasons for the creation of Wayland.
Imagine that the vulnerability affected non-sudo user sessions with Dolphin. Would it be appropriate to entirely disable using Dolphin on X11 due to the vulnerability, and require Wayland despite the fact that our support for it is not finished yet? It's the same thing with disabling the feature entirely before polkit support is available: //It doesn't make sense to disable features in the name of security before their replacements are available.//
For a root GUI session, there is no extra vulnerability beyond what you're already vulnerable to by running a root GUI session, right? Does anybody have a reasonable argument to make against at least reverting this for the root GUI session use case?
REPOSITORY
R318 Dolphin
REVISION DETAIL
https://phabricator.kde.org/D12732
To: ngraham, #dolphin, graesslin
Cc: nicolasfella, elvisangelaccio, Fuchs, mmustac, markg
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.kde.org/mailman/private/kfm-devel/attachments/20180507/1fc38d86/attachment.htm>
More information about the kfm-devel
mailing list