Security problem ??
John Campbell
jdc.rpv at cox.net
Sun Mar 26 23:46:35 UTC 2006
Vayu wrote:
> On Sunday 26 March 2006 10:07 am, Werner Erselina wrote:
>> Is there anybody who could confirm this problem on his or her kubuntu box.
>> Cause i think it might be a serious security problem.
>>
>>
>> Op vrijdag 24 maart 2006 22:20, schreef Werner Erselina:
>>> Hi everybody,
>>>
>>> I noticed some strange behaviour on my upgraded from breezy to dapper box.
>>> I created a guest account with the name pap. I configured the behaviour
> for
>>> this user to autologin afther 5 seconds, and that this user could login
>>> without providing a password. However i noticed that all other user's can
>>> login without having to provide a password. The configuration for this
> user
>>> was done with kcontrol or systemsettings (Dont remember anymore). I dont
>>> know if this problem is related to kubuntu (dapper or breezy) or kde. For
>>> clarification i provided my kdmrc file:
>
> I'm pretty clueless about such things, but I'm wondering if you create a
> guest account that doesn't require a password isn't that the same as leaving
> your house unlocked for your friend and then wondering why your neighbor can
> get in?
It's more like leaving your bathroom door open.
Sure it would be easier for someone to pound through the dry-wall
partition and steal a person's stuff than to come in through the locked
outer door but it's not the builder's place to say what someone does in
their own home.
Once in a while a distro decides to remove the ability to set auto-login
accounts...and then they find out just how popular the feature really
is... I'd guess that most linux home computers are set to auto-login.
In fact, my own home computer is set up that way...
The complaint seems to be that someone's opened their bathroom and found
that all the doors in their house have been unlocked, including the side
entrance to the vault (root).
More information about the kubuntu-users
mailing list