Re: Security hole in LXDE?

To: debian-user@lists.debian.org
Subject: Re: Security hole in LXDE?
From: Hans <hans.ullrich@loop.de>
Date: Thu, 02 Mar 2017 11:40:10 +0100
Message-id: <[🔎] 4444307.KKdabc9yg8@protheus1>
In-reply-to: <9627241.pBTbCqPFJB@protheus7>
References: <7419461.KfDLPVJcsL@protheus1> <20170227095657.GA24217@chew.redmars.org> <9627241.pBTbCqPFJB@protheus7>

Checked my system again. 
It looks like have allowed the standard user to execute applications like 
synaptic with root rights. I know, this is going to be asked in KDE, when you 
start  a higher privileged application as a normal user. You can then decide 
(as root), if the user is allowed to start this application as normal user in 
the future.

I also found out, that the user is in group "sudo", but got no entry in /etc/
sudoers.

Also, synaptic starts as synaptic-psexec, what means, that when it is startd 
this way, it is started with root rights.

So, my question: How can I get this all back. A graphical solution is 
preferred, of course I knnow, I can edit /etc/groups and other things 
manually. But if there is a "clicky"-way, this will be preferred.

Thank you for any help and all the knowledge, you gave me.

Best regards

Hans

Reply to:

Follow-Ups:
- Re: Security hole in LXDE?
  - From: <tomas@tuxteam.de>

Prev by Date: Re: root@localhost mail not forwarding in Exim
Next by Date: Re: Security hole in LXDE?
Previous by thread: Re: [DebianOn] laptop for development with hibernation? [ThinkPad W550s]
Next by thread: Re: Security hole in LXDE?
Index(es):
- Date
- Thread