> > > On Tuesday 22 November 2011 11:09:58 pm Timothy Pearson wrote: >> > On Tuesday 22 November 2011 10:47:12 pm Timothy Pearson wrote: >> >> > Whenever my screen locks (e.g. from my screen saver or from >> manually >> >> > locking) and I go to unlock, I'm told to press CTRL+ALT+Del, and it >> >> says >> >> > it's displaying that so the login screen doesn't get spoofed. >> >> > >> >> > When logging out, I get a window saying it's saving my settings. >> >> > >> >> > Both of these remind me of WinXP. The CTRL+ALT+Del thing is of >> WinNT >> >> (XP >> >> > is based on NT). >> >> > >> >> > Is there a way to turn this off? >> >> > >> >> > Also, if the CTRL+ALT+Del thing is used for unlocking, why not too >> for >> >> > logging in? >> >> >> >> It is normally used for both unlock and login. It is a generic >> >> implementation of a Secure Attention Key (SAK), without which Linux >> is >> >> actually less secure than Windows. >> > >> > Never heard of it, nor have I ever seen CTRL+ALT+Del in Linux >> >> The problem boils down to the fact that I can make a perfect copy of the >> login (or lock) screen, leave it running as a non-priviledged user (e.g. >> on a public computer), and grab your password. There is no way for you >> to >> know the real login screen from a good fake. The SAK allows the >> operating >> system to reserve a secure keypress (in this case Ctrl+Alt+Del) that no >> userspace application will ever be able to see, therefore preventing >> emulation of the logon sequence before any passwords are typed. > > A good iptables setup (block all except what's absolutely needed), an > encrypted hard disk, and not allowing physical access to my laptop whilst > it is on make me confident that won't happen :-) > >> > >> >> The SAK support can be turned off in the KDM control center module. >> > >> > I don't see it anywhere under Login Manager or KDM Theme Manager. >> These >> > are the only two modules that show up when I type kdm into the search >> box >> > for kcontrol. >> >> Look for Login Manager in kcontrol. >> >> Also, if you really don't like the startup/shudown splash screens simply >> select a splash screen other than "Unified". Many users here like to >> have >> feedback that their computer is actually doing something once logout has >> been pressed, but to each their own. ;-) > > To quote my previous message: >> > I don't see it anywhere under Login Manager or KDM Theme Manager. >> These >> > are the only two modules that show up when I type kdm into the search >> box >> > for kcontrol. > > Unified wasn't selected when I installed TDE. It was default to one of the > moreblue splash screens. I've already changed it, but it only affected the > login splash. The logout splash is still a window telling me it's saving > me my settings. Sorry, it's been a long day and I guess I missed that part in your message. The saving settings dialog has a configuration file setting but no GUI configuration checkbox IIRC. Definitely something that should be looked at for R14.0--a bug report would help. Tim