Comment 4 for bug 1850273
Revision history for this message
| Brian Rosmaita (brian-rosmaita) wrote | #4 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
In addition to what Sean said, by default, the command that enables this vector is admin-only. So it's possible it could be done by a disgruntled employee, or a runaway admin script, but there's way worse stuff that either of those could do. So while it may be worth looking into, I don't think it is actually a security issue.