moko running everything as root

Flemming Richter Mikkelsen quatrox at
Wed Jun 18 18:14:47 CEST 2008

When I think about it, I realize that it is important
that the device is secure to use on a network.
Someday the Openmoko devices will support stuff
like flash, java, java script and much more. When
this device connects to the Internet, and the client
on the device runs as an unprivileged user, the
security risks are dramatically reduced.

The users data can be devided into two categories:
normal and sensitive. The sensitive data can be
protected in some way (only accessable to the
superuser or on an encrypted place).

What about the 4 users model:
 - only for root stuff
 - for accessing sensitive/personal data
 - may be encrypted
 - the normal user mode
 - restricted
 - cannot run sudo
 - can not do any harm to the system
 - no direct hardware access
 - can not access sensitive data
 - should be used for untrusted things
    (games & network)

If the device owner wants less security, it is
just to log in as superuser or even root.

With this kind of setup, the freedom of choice
belongs to the user.

More information about the community mailing list