Bugzilla – Bug 147824
Password of root unlocks screensaver for a user...
Last modified: 2006-02-04 17:36:21 UTC
In GNOME, if I'm logged in as a normal user, my root password can be used to unlock the screensaver. Is that a bug or a feature? If it's a feature, then there should be some sort of text in the unlock dialog to inform about it.
I'd understood this to be a feature.
Then there should be a setting in the control panel for the screen saver to disable this feature. If I'm working on something sensitive, I don't want anyone but myself to be able to unlock the screen saver.
OK, how about allowing root to just log you out as an alternative?
Yep, that would work. That's how other desktops do it.
Hmm... now that I look, there is an option (exposed in gconf, if nowhere else) to allow logout... though I don't think it requires the root password. Reassigning in any event. I've heard a couple people voice concern over this feature.
AFAIR, xscreensaver works the same, isn't it?
Indeed, xscreensaver has worked this way for ages as well. Root can always log in and kill the screensaver, so its not a security hole.