Results 1 to 6 of 6

Thread: kdesu kwrite

  1. #1
    Join Date
    Dec 2014
    Location
    Roma
    Posts
    62

    Default kdesu kwrite

    With the latest updates in Tumbleweed, the command does not work: kdesu kwrite, does it happen to you too?
    Thank you so much

  2. #2

    Default Re: kdesu kwrite

    Quote Originally Posted by dragoncello21 View Post
    With the latest updates in Tumbleweed, the command does not work: kdesu kwrite, does it happen to you too?
    Yes. kwrite, kate and dolphin cannot be run as root any more since 17.04.0.
    This is an upstream change, they check whether they are run as root and abort in this case.

    See also this thread: https://forums.opensuse.org/showthre...s-not-possible

    But fear not, we disabled this check in the openSUSE packages, the next update will allow this again for kate and kwrite as well.

    Although be aware that running those applications as root is a *huge* security risk!
    If you need to edit files owned by root you should better use sudoedit (as kwrite should tell you if you try to run it as root):
    Code:
    SUDO_EDITOR=kwrite sudoedit <file>
    This runs kwrite as user, but still allows to edit/save a file owned by root.

    Future KDE Frameworks releases of ktexteditor ask for the root password automatically if the file cannot be written, but we had to disable this because the security team doesn't like it...

  3. #3
    Join Date
    Dec 2014
    Location
    Roma
    Posts
    62

    Default Re: kdesu kwrite

    Ok I tried the command you suggested and within as root in the file to edit, as you are always a big thank you so much

  4. #4
    Join Date
    Apr 2015
    Location
    The Earth
    Posts
    498

    Default Re: kdesu kwrite

    Quote Originally Posted by wolfi323 View Post
    Yes. kwrite, kate and dolphin cannot be run as root any more since 17.04.0.
    This is an upstream change, they check whether they are run as root and abort in this case.

    See also this thread: https://forums.opensuse.org/showthre...s-not-possible

    But fear not, we disabled this check in the openSUSE packages, the next update will allow this again for kate and kwrite as well.

    Although be aware that running those applications as root is a *huge* security risk!
    If you need to edit files owned by root you should better use sudoedit (as kwrite should tell you if you try to run it as root):
    Code:
    SUDO_EDITOR=kwrite sudoedit <file>
    This runs kwrite as user, but still allows to edit/save a file owned by root.

    Future KDE Frameworks releases of ktexteditor ask for the root password automatically if the file cannot be written, but we had to disable this because the security team doesn't like it...
    Thanks
    Today I updating system and woking kdesu kwrite
    On does it hurt to security?
    Dual-boot openSUSE and win10
    OpenSUSE Tumbleweed ; Plasma 5.15.x:" LVM encrypted"
    My Partition: GPT and UEFI system
    Hp ProBook 450 G1

  5. #5

    Default Re: kdesu kwrite

    Quote Originally Posted by 123thinksuse View Post
    On does it hurt to security?
    Yes, it is a security risk to run *any* GUI application as root.

    And with kate/kwrite it's even worse: you can just open a shell by pressing the F4 key.
    An malicious application (running as user) could send fake keypresses to the Kate/kwrite window, thereby open a root shell and run arbitrary commands (as root).
    See also https://blog.martin-graesslin.com/bl...files-as-root/ and https://marc.info/?l=kfm-devel&m=145192452218315&w=2

  6. #6
    Join Date
    Apr 2015
    Location
    The Earth
    Posts
    498

    Default Re: kdesu kwrite

    Quote Originally Posted by wolfi323 View Post
    Yes, it is a security risk to run *any* GUI application as root. And with kate/kwrite it's even worse: you can just open a shell by pressing the F4 key. An malicious application (running as user) could send fake keypresses to the Kate/kwrite window, thereby open a root shell and run arbitrary commands (as root). See also https://blog.martin-graesslin.com/bl...files-as-root/ and https://marc.info/?l=kfm-devel&m=145192452218315&w=2
    Ok Thank you
    Dual-boot openSUSE and win10
    OpenSUSE Tumbleweed ; Plasma 5.15.x:" LVM encrypted"
    My Partition: GPT and UEFI system
    Hp ProBook 450 G1

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •