[Wine] Re: Alexandre says "let the newbies run as root"

oiaohm wineforum-user at winehq.org
Sat Mar 22 02:01:03 CDT 2008


Alexandre Julliard.   So far no one has been unlucky.  That is all.

Most likely because of the so called crusade.

cat and wine are no were near in the same class.   Number 1 wine can run windows viruses and known destructive trojans.  cat requires some use to truly use it incorrectly.

Its not like wine has a embedded anti-virus to stop it from running those evil things.   There is no reason from a security point of view to have wine running with full root capability's on Linux kernels 2.6.24+ Even before with selinux granting privilege.

Its not the watch dog I am worried about.   As root you can basically delete every file on a Linux system unless selinux or some other security system is set against it.  We are all ready having cases of people getting there wine fully virus infected.

Its only a matter of time if people are running as root with complete default base access wine provides ie Z drive for someone to have a virus in wine nuke there install.

Rebooting box is one thing.  Complete Loss of OS is another.  Running opengl at worst is a lockup.  System is still there to be repaired.

If you want wine ruinable from root user for security reasons it really should ask for its own user like any other service and downgrade to that user.   To many files own to root.

Or be like all Linux demons wrapped by selinux to stop them killing the rest of the system.  Sorry not all distros provide this. 

The true problem is Windows is a virus infected mess and Wine has no protection against it.  To give users a fighting chance root should be off limits until that is fixed.   Since if they need the extra capability's they can upgrade there Linux kernel.  Other platforms will have to provide there own ways around it.







More information about the wine-users mailing list