Forum: SuRun English speaking RSS
SuRun tutorial
tlu #1
Mitglied seit 03/2008 · 45 Beiträge
Gruppenmitgliedschaften: Mitglieder
Profil anzeigen · Link auf diesen Beitrag
Betreff: SuRun tutorial
Hello,

there is a nice SuRun tutorial in English on http://www.dedoimedo.com/computers/surun.html

Worth a look!

Greetings,

Thomas
Kay (Administrator) #2
Benutzertitel: Weltverbesserer
Mitglied seit 11/2007 · 1480 Beiträge · Wohnort: Magdeburg
Gruppenmitgliedschaften: Administratoren, Mitglieder
Profil anzeigen · Link auf diesen Beitrag
Thanks for telling about the tutorial.

I just read it and think it is a good starting point for using SuRun.

Unfortunately Mrk seemed to misunderstand a few things:

Users must enter their password is very important. It's one of the basic foundations of the SUDO mechanism.

This is not necessarily correct as SuRun does not need any password nor store it anymore. SuRun just adds the privileges of the administrators group to the existing user token.
SuRun's ask for user password option just checks if the given password is correct and then it trashes the password by writing zeros to the password RAM location.
Also Malware cannot press the "OK"-Button, so it's pretty safe to just ask for OK without a password.

Mrk's recommended options for programs in the program list are of no use.
These options are SuRun defaults for all apps in the system.
An app in the program list should have at least one of both options not in the first place checked, else it is treated as every other app in the system.

I think that Mrk did not know that SuRun asks questions on a safe desktop and thus he recommends using passwords.
I fact using passwords makes SuRun theoretically less safe, as passwords are stored in RAM (for just a millisecond) and because SuRun calls LogonUser with that password. This API could be hooked by a password spy.
But as I wrote this is just theoretically! ;-)

Thats all about what's wrong.

I really appreciate Mrk for writing this tutorial! He did a great job.

This gives me some time for not writing the english manual ;-)
Mrkvonic #3
Benutzertitel: Muchos Geekos
Mitglied seit 12/2008 · 1 Beitrag · Wohnort: Ring 0
Gruppenmitgliedschaften: Mitglieder
Profil anzeigen · Link auf diesen Beitrag
Hello,

Mrk here ... Thank you for taking the time to read.

1) Regarding passwords, I understand that the password is not necessary. In theory, you don't need them in Linux either, although it's considered weak/bad password policy. I think the password is important to prevent unauthorized changes to the system by OTHER USERS from your own account. Not necessarily malware. I was not thinking about malware. I was thinking kids, father, brother, friends ... people who like to do things the wrong way.

2) As to the programs. Thanks for pointing out the difference. I assumed that you needed to add the applications to be used as default, rather than add them to be treated as NOT default. I'll change the article accordingly.

Thanks!

Mrk
Kay (Administrator) #4
Benutzertitel: Weltverbesserer
Mitglied seit 11/2007 · 1480 Beiträge · Wohnort: Magdeburg
Gruppenmitgliedschaften: Administratoren, Mitglieder
Profil anzeigen · Link auf diesen Beitrag
Wow, you're fast!
I just wanted to write an eMail to you ;-).

I'm happy you got SuRuns functionality right.
The password stuff is mostly used for scenarios where the system is left unattended... as you assumed :-)
Schließen Kleiner – Größer + Auf diesen Beitrag antworten:
Prüfcode: VeriCode Gib bitte das Wort aus dem Bild ins folgende Textfeld ein. (Nur die Buchstaben eingeben, Kleinschreibung ist in Ordnung.)
Smileys: :-) ;-) :-D :-p :blush: :cool: :rolleyes: :huh: :-/ <_< :-( :'( :#: :scared: 8-( :nuts: :-O
Weitere Zeichen:
Gehe zu Forum
Nicht angemeldet. · Kennwort vergessen · Registrieren
This board is powered by the Unclassified NewsBoard software, 20150713-dev, © 2003-2015 by Yves Goergen
Seite erstellt in 79,3 ms (39,4 ms) · 57 Datenbankabfragen in 11,8 ms
Aktuelle Zeit: 23.10.2018, 08:03:19 (UTC +02:00)