|Summary:||"Remember authorization" should not be selected by default|
|Component:||General||Assignee:||Richard Hughes <richard>|
|Status:||RESOLVED WORKSFORME||QA Contact:|
|i915 platform:||i915 features:|
Description Jarkko 2008-05-11 06:50:55 UTC
"Remember authorization" should not be selected by default. If I want to do that and I select that, that is not asked again. But now that I don't want to do that (because I really don't want the root password to be stored in my home directory as plain text), I need to deselect that every time. It would be more logical the other way around - and usable (and secure).
Comment 1 Richard Hughes 2008-05-12 02:04:24 UTC
>I really don't want the root password to be stored in my home directory as plain text It's not, I assure you. I'll ask DavidZ about deselecting the checkbox by default. Richard.
Comment 2 Jarkko 2008-05-12 15:37:52 UTC
I read the PolicyKit documentation. Yes, storing the authorization is implemented securely (as it only stores the authorization - no passwords). No problems there. But my other points are still valid I think. Even the security factor remains because giving e.g. installation permission for ordinary user is something which should only happen if the administrator actually wants it - even when the ordinary user is the same person as the administrator. My main point is the usability factor.
Comment 3 Jean-François Fortin Tam 2011-03-11 13:54:03 UTC
Richard, this seems to have been fixed by now, no?
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct.