Fedora 22 update security
Matthew Miller
mattdm at fedoraproject.org
Tue May 12 21:47:34 UTC 2015
On Tue, May 12, 2015 at 09:29:00PM +0000, Thiyagarajan, Nethaji wrote:
> Any normal user could easily install the updates that include kernel,
> X11 and all system related installs without the need for the system
> administrator. This might disrupt or falsify if some settings are
> done by the system administrator.
Two things:
* Only official, signed packages can be installed in this way. There's
no way to install a false package.
* It's not actually available to "any normal user". You are an
administrative user — a member of the `wheel` group.
--
Matthew Miller
<mattdm at fedoraproject.org>
Fedora Project Leader
More information about the desktop
mailing list