[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: User Experience improvements for Anaconda



On Sun, Nov 28, 2010 at 10:26:59 -0500,
  Chuck Anderson <cra wpi edu> wrote:
> 
> It is more risky to run more code as root than to run less.  Logging 
> into a graphical desktop as root means /everything/ runs as root, from 
> the window manager to the browser and everything in between.  This is 
> much more risky than just running a command or shell as root using 
> sudo or su.

Not as much better as you might think. If the user account gets compromised
(as opposed to cases where you make a mistake with a command), then later
when it swiitches to root the malware can use the root credentials to do
other bad stuff. This may give you time to notice the problem and requires
the malware to be more complicated. The more complicated malware only needs
to be written and distrbiuted once.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]