Bug 354106 - Use PolicyKit instead of kdesu to gain required privileges
Summary: Use PolicyKit instead of kdesu to gain required privileges
Status: RESOLVED DUPLICATE of bug 227793
Alias: None
Product: KSystemLog
Classification: Applications
Component: general (show other bugs)
Version: unspecified
Platform: Other Linux
: NOR wishlist
Target Milestone: ---
Assignee: Nicolas Ternisien
URL:
Keywords:
: 424382 (view as bug list)
Depends on:
Blocks:
 
Reported: 2015-10-19 21:00 UTC by Elias Probst
Modified: 2020-08-03 18:37 UTC (History)
1 user (show)

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description Elias Probst 2015-10-19 21:00:35 UTC 
ksystemlog should use PolicyKit instead of kdesu to gain required privileges:

Disadvantages of kdesu:
- a full application running as root on a users X11 server with unlimited permissions is a huge attack surface for all kind of exploits, vulnerabilities etc.
- application is started as root, which makes the application use a different style/iconset etc than the current user's profile. This is visually unpleasant
- increased memory usage, as all components for a second user session (DBus, KDE services, …) needs to be loaded

Advantages of PolicyKit:
- the application runs as the regular user without any visual disruptions
- only those privileges required are given which immensively lowers the negative security impact
- more transparency for the user which privileges the application has through the PolKit agent's interface
- the context of the current user is provided, which would make it possible to also inspect the current user's session journal
Comment 1 Christoph Feck 2015-10-19 22:35:00 UTC 

*** This bug has been marked as a duplicate of bug 227793 ***
Comment 2 Christoph Feck 2020-08-03 18:37:40 UTC 
*** Bug 424382 has been marked as a duplicate of this bug. ***