Re: root login

To: debian-gtk-gnome@lists.debian.org
Subject: Re: root login
From: Leif Johnson <leif@ambient.2y.net>
Date: Tue, 29 Apr 2003 02:23:41 +0200
Message-id: <[🔎] 20030429002341.GB32469@microfridge>
Mail-followup-to: debian-gtk-gnome@lists.debian.org
In-reply-to: <[🔎] b8jtq0$7um$1@main.gmane.org>
References: <[🔎] 1051280874.3ea945eac5fb1@mail.dominicanrepublic.com> <[🔎] 20030425164022.GC494@lazarus> <[🔎] 1051291323.3ea96ebb18853@mail.dominicanrepublic.com> <[🔎] 20030426043435.GF494@lazarus> <[🔎] 3EAAF3B3.1020303@ocf.berkeley.edu> <[🔎] 20030427025246.GB4889@lazarus> <[🔎] b8jtq0$7um$1@main.gmane.org>

On Mon, 28 Apr 2003, Michael Toomim wrote:

> Jeff Waugh wrote:
> >It is far easier to 'fuck things up' in a GUI than it is on the command
> >line. Deleting /dev or /usr in a file manager, for instance, or even just
> >moving them.
>
> [snip]
>
> I think it's *harder* to fuck things up in a gui than on the command 
> line.  It's easy to mis-type "rm ./*" as "rm /*", for instance, but it's 
> hard to use a gui to select an entire file system and delete it.  Plus, 
> a gui can provide extra levels of accident-protection, like "are you 
> sure?" dialog boxes for sensitive information.

I agree with this sentiment, especially from a non-power-user point of view
(i.e. exactly what I click on is exactly what the computer does). But as
much we as programmers may discourage it, there's still a chance that the
software we use contains errors that could make it do dangerous things.
Especially if that software's been cracked somehow (or if you're using
debian experimental ;-).

It seems like one argument with GUI software is that it's generally more
complex and thus harder to iron out such programmer errors, or to detect
cracked libraries. So with software that doesn't have a GUI (ifconfig comes
to mind, though it might not be a great example), and particularly software
that lots of systems use (e.g. pam) there's probably less of a risk.

If this argument is true, have you looked at the crazy processes that run
to support a GNOME session ? It's wack. I really like using my panel
applets, and I think nautilus is fun, but I'm not sure that means it's a
smart idea to trust bonobo-activation (for example) with root permissions.

Seems like the gist of this argument is the motivation to minimize the
number of running processes that aren't directly controlled/written by the
user. And yes, this pretty much assumes that the user won't write silly
things at a command line, like "rm /*" (after all, that's a program, too,
written in shell script).

leif

--
Leif Morgan Johnson . http://ambient.2y.net/leif/
IAESTE trainee      . http://www.iaeste.org/
Salomon Automation  . http://www.salomon.at/

Reply to:

Follow-Ups:
- Re: root login
  - From: Michael Toomim <toomim@uclink4.berkeley.edu>

References:
- root login
  - From: Jenner Almánzar <naldiello@dominicanrepublic.com>
- Re: root login
  - From: Jeff Waugh <jdub@perkypants.org>
- Re: root login
  - From: Jenner Almánzar <naldiello@dominicanrepublic.com>
- Re: root login
  - From: Jeff Waugh <jdub@perkypants.org>
- Re: root login
  - From: Michael Toomim <toomim@OCF.Berkeley.EDU>
- Re: root login
  - From: Jeff Waugh <jdub@perkypants.org>
- Re: root login
  - From: Michael Toomim <toomim@uclink4.berkeley.edu>

Prev by Date: gnome-terminal and who
Next by Date: Re: root login
Previous by thread: Re: root login
Next by thread: Re: root login
Index(es):
- Date
- Thread