unity-design team mailing list archive

Thread
Date

Re: Possible security risk with update-manager

To: Ayatana List <ayatana@xxxxxxxxxxxxxxxxxxx>
From: Scott Kitterman <ubuntu@xxxxxxxxxxxxx>
Date: Tue, 15 Dec 2009 8:53:42 -0500
In-reply-to: <6e3476780912150431t1cbba508g2c4d52e848c21c07@mail.gmail.com>

On Tue, 15 Dec 2009 07:31:37 -0500 "Scott E. Armitage" 
<launchpad@xxxxxxxxxxxxxxxxxxx> wrote:
>I don't think that mac_v is proposing /automated/ updates, so much as he is
>proposing that the current update scheme should not require the
>administrator's password. The administrator would still be notified of new
>updates as they are now, and they would have to decide when to download and
>install the updates, however they would no longer have to confirm their
>administrator status prior to update installation.

How do you confirm adminstrative authorization then?  Whether installed by 
non-admins or automatically is just a variant of not under the 
adminstrator's control.

Scott K

Follow ups

Re: Possible security risk with update-manager
From: mac_v, 2009-12-15

References

Possible security risk with update-manager
From: Paulo J. S. Silva, 2009-11-18
Re: Possible security risk with update-manager
From: Matthew Paul Thomas, 2009-12-14
Re: Possible security risk with update-manager
From: mac_v, 2009-12-15
Re: Possible security risk with update-manager
From: Alan Pope, 2009-12-15
Re: Possible security risk with update-manager
From: mac_v, 2009-12-15
Re: Possible security risk with update-manager
From: Scott E. Armitage, 2009-12-15