Ubuntu
gksu package

Inconsistent security measures for password protection in Dapper

Bug #62893 reported by jmspeex
2
Affects Status Importance Assigned to Milestone
gksu (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Binary package hint: update-notifier

As reported in Bug #54741, the focus-stealing behaviour of metacity makes it *very* easy to type an ssh (or other) password in the wrong window if there's a new window opening. Since I have been told that this behaviour should be considered a "feature" and following the recommendation from Ubuntu developers, the only consistent thing to do would be to remove the "password desktop freezing" in the update-notifier applet. By freezing the desktop and blanking the background (to prevent the password being typed in the wrong window), Ubuntu is inconsistent with the important allegedly feature in Metacity that mandates that passwords end up being typed in random windows from time to time.

Revision history for this message
Michael Vogt (mvo) wrote :

Thanks for your bugreport.

Unfortunately I have to reject it because I value thing this is a important feature of gksu.

Cheers,
 Michael

Changed in gksu:
status: Unconfirmed → Rejected
Revision history for this message
jmspeex (jean-marc-valin) wrote :

Well, the fact remains that the password protection behaviour is inconsistent. The choices are either to accept that Bug #54741 is real (and not a feature) or to conclude that the blanking feature of gksu should be removed. I'd personally prefer the former solutions, but it seems like some people disagree with me (see comments in Bug #54741), which is why I filed this bug.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.