trinity-devel@lists.pearsoncomputing.net

Message: previous - next
Month: December 2011

Re: [trinity-devel] "Keep password" check box restored to kdesu dialog box

From: /dev/ammo42 <mickeytintincolle@...>
Date: Sat, 3 Dec 2011 04:10:05 +0100
Le Sat, 3 Dec 2011 02:05:59 +0000,
Tiago Marques <tiagomnm@...> a écrit :

> I think that saving it in memory can be potentially exploited and is
> something that shouldn't be done.
kdesud is protected against ptrace, at least in KDE 4.5. So I think the
issue is whether we can trust the Linux kernel's memory protection.
Also, KDE 4.5's "Keep password" feature (which is available in
Slackware KDE packages) doesn't allow to re-use the password for
another command, but only for the already launched application.