Ubuntu QA:
BlogBrainstormPackage status
Log in
Ubuntu QA
The Ubuntu community has contributed 12357 ideas, 58479 comments, 1187050 votes

Idea #8693: Sessions should be password protected?



up
3
down
Written by dmacdonald111 the 17 May 08 at 00:09. Category: Security.
Related to: Nothing/Others. Status: New
Description
I feel that the sessions should be password protected. The reason for this, I feel, although a little extreme in example, is that without sessions being protected, these could be changed by an outsider or on a network. Once this has been achieved, anything could be added without the current users' knowledge. All it would need is a keypress tracker or some similar program to be inserted and the user could have anything done to them.

It could be me being a bit paranoid, but even in a certain operating system I never could understand why the start menu was not protected in any way. It can even put an 'invisible' link in there. Perhaps the same could be done in ubuntu?
Tags: (none)

Attachments
forum Ubuntuforums.org thread #797652


Duplicates


Comments
HDave wrote on the 17 May 08 at 01:17
Perhaps this could be require root priviledges. Better yet, it could be put under the purvue of PolicyKit or the KeyRing.

Good idea +1

Rinzwind wrote on the 17 May 08 at 05:13
Very nice idea. Might be worth it to post on the forums (security) to ask for opinions.

I also like the policykit idea.

Eldmannen wrote on the 17 May 08 at 13:13
What sessions?
What are you talking about?

Are you talking about HTTP sessions or desktop sessions?

dmacdonald111 wrote on the 17 May 08 at 17:56
My apologies Eldmannen. The sessions I am talking about are;

Start Menu > System > Preferences > Sessions

Hope that clears everything up :)

holizz wrote on the 17 May 08 at 20:29
-1 This would give people a false sense of security.

If you're logged in as a user then you have write permissions. Then you can edit their "session" settings whether or not it's "password-protected".

There are hundreds of methods of hooking things in to other things, so if you're leaving your machine alone without at least locking the screen then you must be a very trusting person.


Post your comment