epoptes team mailing list archive

[Fotis Tsamis <ftsamis@xxxxxxxxx>]

** Description changed:

- Hi folks,
- I have installed epoptes in our school. One pc is teacher pc, 20 pc's for the pupil (no ltsp!!!, every computer runs on his own).
- Everything works fine.
- However, I don't like the idea that every teacher (in group SOCKET_GROUP=TEACHERS) can execute arbitrary commands as user root on every pc in the classroom via "execute --> open command line --> root local. E.g. a teacher might call rm -R /* or su into another teachers account and do all kinds of things.
- Is there a way to disable "execute --> *" on the server epoptes?
- Best would be, if one can specifically allow it for some users and deny it for the rest of SOCKET_GROUP.
- I assume one has to change the python source for this?
- Can somebody help, please?
- Thanks, Markus
+ Currently all epoptes users are permitted to execute whatever command
+ they wish on the clients, open a terminal and even a root terminal.
+ 
+ Epoptes (daemon) should have a permissions system with which you could
+ set roles and allow each user to perform certain actions only.

-- 
You received this bug notification because you are a member of Epoptes
Developers, which is subscribed to Epoptes.
https://bugs.launchpad.net/bugs/1203299

Title:
  All epoptes users have the same rights

Status in Epoptes:
  New

Bug description:
  Currently all epoptes users are permitted to execute whatever command
  they wish on the clients, open a terminal and even a root terminal.

  Epoptes (daemon) should have a permissions system with which you could
  set roles and allow each user to perform certain actions only.

To manage notifications about this bug go to:
https://bugs.launchpad.net/epoptes/+bug/1203299/+subscriptions