default sudo timeouts too long. Potential risks from gui pov.
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kdesudo (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: kdesudo
The default sudoers configuration file provided in ubuntu's sudo package doesn't define the password (timeouttimesta
From a terminal's point of view, this doesn't seem to be much of a problem. Those applications run within 15 minutes from the same terminal can run as root without providing a password. It doesn't seem to be much of a problem, as far as the terminal is closed once maintenance is done.
The problem arises when the GUI sudo frontends are being used:
Kubuntu's kdesu has been modded to be using sudo (kdesudo) and system administration applications all use kdesudo for authentication. This means that, once somebody does system maintenance, ANY gui application can run as root without providing any password authentication. Any gui application the user runs, can get access to root privileges, even without asking nor notifying the user about it.
I'd really like to see kdesu/do notifying the user that it's about to run something as root. Or, else, have the default timeout reduced to a safer value, to avoid any potential risks of gui applications taking advantage of gui admin application users.
This is also the default behavior in ubuntu with gksudo.