[go: up one dir, main page]
|
|
Log in / Subscribe / Register

Fedora 12 and unprivileged package installation

Fedora 12 and unprivileged package installation

Posted Nov 21, 2009 5:30 UTC (Sat) by JoeBuck (guest, #2330)
In reply to: Fedora 12 and unprivileged package installation by AdamW
Parent article: Fedora 12 and unprivileged package installation

OK, I apologize to the PolicyKit people; it is the PackageKit team that needs someone who can think like a black hat.

to post comments

Fedora 12 and unprivileged package installation

Posted Nov 21, 2009 12:11 UTC (Sat) by hppnq (guest, #14462) [Link]

In general, I would say it is all of them.

Fedora 12 and unprivileged package installation

Posted Nov 21, 2009 16:34 UTC (Sat) by AdamW (subscriber, #48457) [Link] (1 responses)

Sort of a fair point, but for most distributions it's not practical to have a security expert working on every application which could possibly have security implications (...er, just about all of 'em). Hence, as has already been discussed, the improvement needed here is just to ensure that Fedora's processes ensure there's more oversight of potentially sensitive changes to any component. Seth Vidal is already working on a proposal for this.

Security policy expertise

Posted Nov 21, 2009 19:06 UTC (Sat) by PO8 (guest, #41661) [Link]

Wha? Nobody is asking you to have a security expert working on "every application". They're asking you to have a security expert working on the applications which control your security policy. Especially when those applications are new and present unique challenges. Any distro that can't afford that should stick with the tried-and-true UNIX security model and its implementation rather than trying to innovate in the security policy arena.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds