Re: Admin vs Root Authorization
Re: Admin vs Root Authorization
- Subject: Re: Admin vs Root Authorization
- From: Stéphane Sudre <email@hidden>
- Date: Wed, 30 Nov 2005 23:26:41 +0100
On mercredi, novembre 30, 2005, at 10:49 PM, Peter Bierman wrote:
It's a policy distinction, not a technical one.
'Admin' and 'Root' authorization in the Installer enable the exact
same behavior for the install. They differ only in that 'Admin'
authorization does NOT ask users in the admin group for a password
first.
Much like System Preferences does not force admin users to enter their
password for otherwise protected operations.
Unfortunately, the installer itself can not determine if your package
"should" ask for a password. 99% of the time, such packages probably
should ask for a password and use "Root" authentication.
There's been plenty of confusion about this, even inside Apple, so the
behavior of these flags is currently being reviewed and may change if
we decide that "admin" authorization is an unnecessary risk.
The issue isn't capability, but notification. Asking users for their
password in order to "alert" them to an unusual situation can lead to
password fatigue, so in the case of the broadband tuner, someone
decided that an extra "heads up" wasn't necessary.
Hum, if you are a user with an admin account but do not belong to the
sudoers, does this mean that Admin Authorization is still the same as
Root Authorization?
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Installer-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden