Unauthenticated user can modify the background in a widget-lock-screen
Kevin Kofler
kevin.kofler at chello.at
Sat Mar 16 22:21:48 UTC 2013
Gilboa Davara wrote:
> While testing 4.10/f17 I decided to try out the new lock screen.
> The widget lock screen is indeed nice, but there's a major security issue:
> An unauthenticated user can access the lock-screen setting and change the
> background. (cashew->settings).
Changing the background is a "major security issue"?!
I wonder whether adding ihatethecashew to the widget lock screen would work.
(I guess not, it needs to declare that it is safe for the lock screen to be
authorized.)
Kevin Kofler
More information about the kde
mailing list