As explained in bug 425156, gksu is dead and should be replaced by direct polkit usage when needed (as was done with gparted). Thanks
I do not see any good reason in both bugs. Is there any security vulnerability? "Old and unmaintained" sounds pretty vague to me.
It's completely unmaintained and is not the preferred way because it gives full root access to applications instead of relying in polkit to control the access
it's still stable and unmasked, still not a good reason
It's stable and unmasked because it was maintained years ago and the only alternative, and we cannot mast it because of the packages still using it to gain root access
so what would be the masking reason then?
The security implications of using gksu instead of pkexec are shown in "man pkexec". Also, "features" like retaining root access for some time (in the case of gksu) is prone to security issues
That's too thin for me.
Maybe considering that there is not advantage in giving only the necessary privileges to the involved app instead of full root access is your problem. The same for relying on a completely unmaintained app to do this
I have seen you have reassigned it to gnome team, why? Do you allow us to do the changes?
You can also see gksu homepage about the migration: http://www.nongnu.org/gksu/
Well, I'm not interested in fixing as long as gksu is in the tree. As you can see it is one of 3 supported implementations. If you replace it, you have to make sure that it WORKS.
(In reply to Julian Ospald (hasufell) from comment #11) > Well, I'm not interested in fixing as long as gksu is in the tree. As you > can see it is one of 3 supported implementations. If you replace it, you > have to make sure that it WORKS. You have to fix it as you are the maintainer of net-firewall/pglinux. If the maintainer of gksu follow upstreams recommendations [1] to not use it anymore, then we have a valid reason. So please be cooperative and work together with the net-firewall/pglinux and our gnome team on the migration. 1) "It is not a good option now that we have PolicyKit." https://wiki.gnome.org/gksu
Anyway, I will try to provide a fix for this when I have time to dig into this gksu migration in a future round
If you can come up with something interesting, then I can make it go upstream. Otherwise feel free to remove the gksu dep yourself. This is only an optional dependency and the user selects it in the gui directly (the path to the binary).
2.3.1 doesn't use it