Login

Tegid · (This post was last modified: 03-26-2017, 08:08 PM by Tegid.)

I will usually on first boot and while installing updates (from a console log in) use the administrator graphical log in to create a desktop user, which then becomes my default log in from second boot onwards (the policy being not to type an administrator password during an X11 session if at all possible, logging in to an administrator log in only from a console).

Now while applications like 'Install/Remove Software' and 'Users and Groups' correctly prompt for the password of the administrator log in even when logged in as a desktop user (they seem to be able to automatically deduce this somehow!), lite-* tools requiring an admin. log in assume an administrator is running the program in the first instance and duly prompt only for a password -- being logged in as a desktop user (without even any sudo rights) the program duly refuses to run.

I can however run lite-* admin. programs from a terminal as a desktop user, logging in as administrator with 'su -l <admin. user>' in the first instance, however it does leave the password exposed to key loggers (although running xterm selecting the 'Secure Keyboard' option is a way around this).

ralphy · (This post was last modified: 03-26-2017, 08:30 PM by ralphy.)

(03-26-2017, 07:01 PM)Tegid link Wrote: Now while applications like 'Install/Remove Software' and 'Users and Groups' correctly prompt for the password of the administrator log in even when logged in as a desktop user (they seem to be able to automatically deduce this somehow!)

The applications you mentioned use pkexec while lite-* use gksu/do. gksudo locks the keyboard, mouse, and focus when asking for a password, pkexec doesn't. In both cases the keystrokes are sniffable though since they both use the same "desktop GUI security".

Quote:I can however run lite-* admin. programs from a terminal as a desktop user, logging in as administrator with 'su -l <admin. user>' in the first instance, however it does leave the password exposed to key loggers (although running xterm selecting the 'Secure Keyboard' option is a way around this).

You answered your own question I believe Smile

; temporarily use xterm "Secure Keyboard" if you need the extra privacy between your Terminal and the keybord to type the password.

For an introductory OS such as Linux Lite the options are there. Standard users accounts can run some tweaks without privileges since they do not require higher permissions. For administrators, run under an admin account, else elevate yourself from a Terminal and get the job done.

Tegid · 03-26-2017, 08:34 PM

Initially attempted to install xterm, however surprised to find it was included in the default install, doesn't happen often nowadays.

***Valtam*** · 03-26-2017, 11:46 PM

ralphy · 04-19-2017, 10:36 AM

(03-26-2017, 07:01 PM)Tegid link Wrote: ... while applications like 'Install/Remove Software' and 'Users and Groups' correctly prompt for the password of the administrator log in even when logged in as a desktop user (they seem to be able to automatically deduce this somehow!), lite-* tools requiring an admin...

[member=6842]Tegid[/member] , run Install Updates please. You'll notice that we have moved many applications from gksu to pkexec which takes care of what you've mentioned. Lite Tweaks is not there yet (sorry) but we are working on it and should be ready in the next few days Smile

Thank you for your feedback. Cheers!

ralphy · 04-21-2017, 12:44 PM

[member=6842]Tegid[/member] please run Install Updates. Lite Tweaks update is now available Smile

Cheers!

Login
Username:
Password:	Lost Password?
	Remember me

LINUX LITE 7.2 FINAL RELEASED - SEE RELEASE ANNOUNCEMENTS SECTION FOR DETAILS