Re: F21 Self Contained Change: Security Policy In The Installer

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On Fri, Mar 14, 2014 at 07:31:55PM +0000, Matthew Garrett wrote:
> On Fri, Mar 14, 2014 at 02:39:51PM -0400, Eric H. Christensen wrote:
> > On Fri, Mar 14, 2014 at 03:00:20PM +0000, Matthew Garrett wrote:
> > > If there's a default policy that would make sense for most workstation 
> > > users, we should just make that the default. If there isn't, how are we 
> > > going to educate users as to which choice they should be making? *I* 
> > > don't understand the terms used in the proposed UI, so I'd be willing to 
> > > put money on the number of potential users who do being pretty close to 
> > > statistically indistinguishable from 0.
> > 
> > I'm all for creating a recommended hardening policy that users can opt 
> > into at install time.  This feature would allow us to provide that 
> > kind of data to the end user.  If the user decides to not implement a 
> > policy that would simply yield the same outcome as we have today.
> 
> How does the average user make an informed decision about whether an 
> available security policy is appropriate for them?

I guess we'll have to describe the different policies and provide approprate documentation/education.  You know, pretty much how we get users to understand whether or not they should encrypt their hard drives or assign the first user as an administrator or anything else they do with their computer.

- -- Eric

- --------------------------------------------------
Eric "Sparks" Christensen
Fedora Project

sparks@xxxxxxxxxxxxxxxxx - sparks@xxxxxxxxxx
097C 82C3 52DF C64A 50C2  E3A3 8076 ABDE 024B B3D1
- --------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=q61C
-----END PGP SIGNATURE-----
-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct





[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux