Ubuntu QA:
BlogBrainstormPackage status
Log in
Ubuntu QA
The Ubuntu community has contributed 16587 ideas, 102320 comments, 2136221 votes
Idea sandbox Idea sandbox
Popular ideas Popular ideas
Ideas in development Ideas in development
Implemented ideas Implemented ideas
Idea #20378: It's wrong to stop all activities for requesting administrator password

Written by masfia the 23 Jun 09 at 08:20. Related project: Gnome. Status: New
Rationale
When you start an application that require administrator privileges (i.e. synaptic) the system is locked and you can not use other applications.
Tags: (none)

-23
votes
up equal down
Solution #1: Limit the password request to the only application that requires it
Written by masfia the 23 Jun 09 at 08:20.
Limit the password request to the only application that requires it, so the user can do other tasks that don't require administrator privileges.
-17
votes
up equal down
Solution #2: user selection security level.
Written by janith3000 the 26 Jun 09 at 19:02.
Users can select a security level in login window. like session selection. it mat be High,medium,low,etc.. like that. but defeult level is high. if any user want low security level then he can select law and login. then he can access all of administration applications once he gives a root password.

Propose your solution

Attachments
No attachments.


Duplicates


Comments
Darwin Survivor wrote on the 25 Jun 09 at 19:17
This is a huge security feature. Locking out the machine prevents anyone who has installed some keyloggers or remote-capture software from attempting to enter passwords.

Note: I don't think it's perfect (a kernel module keylogger could still probably get through), but it GREATLY reduces the security risk.

chaos.ct wrote on the 25 Jun 09 at 23:26
And it prevents you from accidentally messaging your password by IM for instance.

AndrewLuecke wrote on the 26 Jun 09 at 15:45
There is a good reason for that. It ensures users type it into the correct window, and has many other benefits as mentioned.

The better solution would be to minimise the need for prompts by doing stuff such as allowing home directory DEB installs and such


Post your comment