Linux installing applications requires root password.

Can anyone explain to me why it is that on Linux, Air
requires a root password to install an application even if the
installation directory is specified as somewhere within my own home
directory?
That it asks for a root password under such circumstances
seems very wrong. The application files are being written to my
home directory, I don't need to be root to write there and I do not
want files being created in my home directory with root as the
owner, as Air does when it installs an application.
Asking for the root password also means that users who have a
Linux machine that is administered for them by someone else and do
not have root are unable to install Air applications themselves
even if the administrator has installed Air on their
machine.

First of all, on behalf of myself (and anyone else who has
been wondering about this particular detail of Adobe AIR) let me
thank you for your helpful reply. This does still leave me with a
couple of questions, however...
quote:
Originally posted by:
Ashutosh Sharma
AIR applications are similar to regular native applications -
they install as native rpm/deb packages. This requires access to
the rpm/deb system database (e.g. rpm database lock). And this is
required even if the installation folder is chosen to be one that
is owned by the current non-root user. In addition, with root
privileges, it's also possible to install applications to a
location that is accessible to other users on the system.
I have confirmed for myself the accuracy of this information
and I thank you for pointing it out. While this does make some
sense on the surface, it does leave me wondering something about
the security level of this install process. When I install
applications from my Linux distribution's package sources, I have
GPG (or PGP) cryptographic key signatures ensuring that all the
packages are un-altered from their original form on the
distribution's package servers, and a team of programmers assuring
me that the code of these packages are (at least somewhat) safe as
far as they are able to tell. I am thus far unable to find
information leading me to believe that there is similar assurance
that I am not willingly installing unknown malware (keystroke
logger, spyware, etc.) disguised as a desktop widget (for example)
when installing Adobe AIR applications. As a code savvy user, I can
personally download and examine the code of many AIR apps to ensure
their safety myself before installing, but what about users who
understand code as well as they understand Martian language or
ancient Egyptian hieroglyphs? Is there any assurance process in
place for the average user similar to that of native distro
packages? If so, can anyone point me to where that is discussed on
the Adobe pages?
Also, as an aside note; root privileges are not technically
REQUIRED in order to install an RPM package in a location which the
user already has write access to, as I personally have on many
occasions installed source code packages (SRPM) from my
distribution's package manager in my home folder while logged in as
a normal user (without the use of 'su' or 'sudo' or such) for the
purpose of building newer versions of the RPM packages which they
correspond to.
quote:
Originally posted by:
Ashutosh Sharma
However, do note that when they are launched, AIR
applications run with the privileges of the user launching the
application and not root. The primary executables of AIR
applications (under the bin/ folder in the installation path) do
not have the setuid bit set. You should not be worried about AIR
applications running with root privileges, based on the fact that
their installation required superuser access - the two are
completely independent.
This does still go back to the original point about the
security of the code itself which is being installed in the first
place. What quality assurance process is in place (beyond the star
ratings system on the application showcase site) to ensure that
malware was not installed (as root) and then happily being run by
all the users of a system while blissfully unaware of the capture
of their passwords or other personal information? (Again, an
example, and not the only such possible worry.) If such an
assurance system
is already in place, where can I (and other AIR users) read
more about it?
The reasons for this concern should be obvious when one
considers that a malicious application does not necessarily need to
be run as root to still do a great deal of damage on a system and a
sufficiently sneaky malware application could possibly even
obtain root privileges once installed on a system through
some other privilege escalation exploit. As an administrator of
multiple systems and networks, I have to be cautious about which
applications I allow on to a system or network for this very
reason.
Please be aware that I am not making these points and asking
these questions to be a "troublemaker" or to shoot down the
achievements of the AIR team, or Adobe. To the contrary, I am very
impressed by the technology that I've seen so far and would
very much like to see AIR become and stay a genuinely useful
part of the web ecosystem on all platforms. As a matter of fact,
I'm personally reading a few different resources currently about
how to develop AIR applications in anticipation of satisfactory
answers to my few remaining concerns about AIR security worries. ;)
P.S.: If this forum was the wrong place to be discussing
these specific types of issues and concerns, please feel free to
point me toward a better place where such things should be better
covered and where like-minded individuals and groups might either
continue the discussion or resolve / close this concern entirely.
An IRC channel where AIR devs hang out maybe, or perhaps another
Adobe forum where security concerns are discussed, etc.? :)
Anyhow, sorry about the long rambling post. Thank you to
Ashutosh Sharma for your initial reply to this thread, and thank
you in advance to whoever may reply further and bring final
resolution to any remaining worries I and others may have regarding
these and similar potential security concerns. :)

Similar Messages

  • SCCM 2012 Linux "Installed Applications" report

    Hello,
    Is there a report built-in that can tell me what is installed on a Linux box?
    I can see it is displayed in Hardware Inventory, but is not pulling any data on the Software reports.
    Does a custom report needs to be built in order to pull this data?
    Regards,
    LeonardoT

    Based on the information provided
    here about the classes included in the inventory on Linux clients, I would assume that a report like
    Software registered in Add Remove Programs on a specific computer
    will show data.
    My Blog: http://www.petervanderwoude.nl/
    Follow me on twitter: pvanderwoude

  • Why does a program/application require admin password to run?

    Hello,
    I have a third party program/application that I am running under standard user account with no admin right. The application was installed in a folder to which the standard account was granted full right. When I double clicked on the program to run it
    under the standard user account, I was asked for admin credentials before I can run it.
    Does anyone know what has caused this? The application does write in the folder where it was installed and was given full access right for the folder and all sub folder below it. My OS is windows server 2008.
    Thanks!

    "Installer Detection" ?
    http://msdn.microsoft.com/en-us/library/bb530410.aspx#vistauac_topic3
    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

  • Root password on solaris FPGA "fast-boot"

    I tried to boot opensolaris on FPGA in maintenance mode using "boot -m milestone=none" but it required root password which isn't mentioned in any documentation I looked at. Does anyone know what the password is or what it might be by default?
    Also, the DV guide mentions that adding programs can be done by mounting the program to the file system. This, however, requires root access to a sparc machine which I don't have. Some other users have tried ftp-ing executables.this would require ftp-ing these executables everytime the system is restarted. Any other solutions or suggestions? I am thinking about mounting a compact flash card to the file system and accessing my executables from there. The problem is I don't know how to mount devices to the file system. Any help would be much appreciated. Thanks.

    877531 wrote:
    All,
    please Type sudo root
    Password is ovsroot
    Even i had the same problem.. Finally its not oracle or something, it is "ovsroot ".
    And this password is for solaris 11 express edition virtual machine package..I think this will confuse the original poster, who was asking about the LiveCD USB image, not the VirtualBox appliance image. These are two different things. You and Tony are correct with regard to the VirtualBox appliance image user and root passwords, as documented in the OTN readme:
    http://download.oracle.com/otn/solaris/express/README.txt
    However, the original poster downloaded and booted from the LiveUSB, which operates out of RAM, not the harddrive. It is used for a fresh installation of Solaris 11 Express, as well as for trying out and running the OS without touching the harddrive. As Sadiq mentioned in his post, some commands require the root role, which is in the Solaris 11 Express Getting Started guide:
    http://download.oracle.com/docs/cd/E19963-01/html/820-7799/explore.html
    The previous answers are correct: The password is "solaris" for the LiveCD/LiveUSB environment.
    -- Alan

  • Installing Applications not requiring user name and password?

    Hi, I'm experiencing the bug that everyone is experiencing where my suer doesn't have administrative rights to my computer. But I seem to be operating fine.
    The question I have is, should I be able to install applications without a username or password? When I just installed Adobe Flash Player 9 on my computer (downloaded from Adobe) it didn't require a username or password. Has anyone else experienced this? I have always been asked for it in the past. What is up with that?

    This was an fresh install of Leopard without any historical data. I did restore my backed up my documents folder once leopard was installed but that was it. It seemed this all started when I tried to install some software and discovered that I no longer had an administrative user for my computer. Regardless it does concern me that there is a way for software to be installed into Leopard under the right circumstances. I finally was able to get my user back to admin rights via a workaround where I enable the "root" user. Anyway I finally gave up and went back to Tiger (luckily have been doing regular back-ups of my data). I am going to report these bugs to Apple or try to anyway. I'm just frustrated that things went so bad so quickly and I don't feel like I was doing anything out of the ordinary with my computer. I have done first installs of mac OS's the week they came out in the past and have never seen anything like this.

  • After installing a required update, many of my normal applications (Word, Chrome, Adobe Reader) will simply crash after opening. Why?

    I recently installed a required printer (epson) update on my Macbook Pro (running Mt Lion).  After installing and going through the required restart, I discovered that many of my existing applications will not open; instead they simply crash moment after opening.  Prior to the update installation, everything worked fine.  I have gone through the disk utiities program and repaired the various disk permissions that needed changing and still nothing. My MacBook Pro is 4 years old, runs Mt Lion and has plenty of disc space available.  What do I need to do?

    Please read this whole message before doing anything.
    This procedure is a diagnostic test. It’s unlikely to solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
    The purpose of the test is to determine whether the problem is caused by third-party software that loads automatically at startup or login, by a peripheral device, or by corruption of certain system caches. 
    Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards. Boot in safe mode and log in to the account with the problem. Note: If FileVault is enabled on some models, or if a firmware password is set, or if the boot volume is a software RAID, you can’t do this. Ask for further instructions.
    Safe mode is much slower to boot and run than normal, and some things won’t work at all, including sound output and  Wi-Fi on certain iMacs. The next normal boot may also be somewhat slow.
    The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin. Test while in safe mode. Same problem? After testing, reboot as usual (i.e., not in safe mode) and verify that you still have the problem. Post the results of the test.

  • Forgot Linux Root Password

    Hello,
    I installed RHEL 4 through a virtual machine on my computer. I created 2 users Root and System. The problem is i forgot my Root password and logging thru system and i dont have administrator rights for doing anything. can any one help get my root passsword.
    Thanks in advance,
    shushanth

    user12941025 wrote:
    Hello,
    I installed RHEL 4 through a virtual machine on my computer. I created 2 users Root and System. The problem is i forgot my Root password and logging thru system and i dont have administrator rights for doing anything. can any one help get my root passsword.
    Thanks in advance,
    shushanthAnd what this has to do with an Oracle database forum? Anyways, let google be your friend,
    http://www.google.co.in/search?q=how+to+break+root+password+in+linux&rls=com.microsoft:en-US:{referrer:source?}&ie=UTF-8&oe=UTF-8&sourceid=ie7&rlz=1I7GGLJ&redir_esc=&ei=3xy6S4zsL4Sy0gT87-zFCw&esrch=FT1
    HTH
    Aman....

  • Cant install or uninstall Adobe Air. Keep getting error message "This application requires a version of Adobe AIR which cannot be found"

    I am running Windows 7 and use Adobe AIR for Flixster.  When I tried to open Flixster I recieved an error message saying i needed to install Adobe AIR.  I looked and saw that according to control panel, Adobe AIR is installed.  I attempted to uninstall but get this EXACT message:
    "This application requires a version of Adobe AIR which cannot be found.  Please download the latest version of the runtime from http://www.adobe.com/go/getair, or contact the application author for an updated version."
    I have tried going to the mentioned website but i get an error message saying installation failed and may need administrative privilages but I AM the administrator! 
    I then tried multiple solutions on the forums including the command prompt uninstall and still no luck.  contacted customer support who told me i can only receive assistance through these forums.
    Very frustrating.  Please Help.

    I have the same issue with a customer of ours:
    Try to uninstall AIR – same message.  (When I reinstall,  the install says it’s successful.) I try to run our app, same message. I downloaded another AIR app, same message – so it’s not our app it’s AIR.  We logged in as Administrator, same message.  It’s a Windows7 machine. I did a system restore to 2 days ago and started over and still the same issues. I tried running the Windows Fixit to uninstall https://support.microsoft.com/en-us/mats/program_install_and_uninstall – didn’t work.

  • Is possible to install Application server 7 on SuSE linux 9.0

    is possible to install Application server 7 on SuSE linux 9.0

    Actually, this might not be the case since version 7 is based on native implementation of web container while version 8 is based on Tomcat (i.e. pure Java implementation). So, version 7 will definitely be more prone to platform specific issues.
    Just something to have in mind...

  • How can I require a password to be entered in order to install a program/software? (NOT the MasterPassword Option)

    I'm NOT looking for Master Password. I DON'T want to require a password in order to start/open Fire Fox.
    I want anyone trying to download or install a program/software on the computer to have to enter a password, and otherwise not be able to complete the installation.
    People visiting my mother keep installing junk on her computer and keep jamming it up with stupid programs and games.

    though not really a firefox issue - create a password protected administrator account on the pc & turn the freely accessible account into a restricted user account.
    http://www.wintuts.com/Manage-User-Accounts
    http://windows.microsoft.com/en-US/windows7/Prevent-children-from-using-specific-programs
    http://windows.microsoft.com/en-US/windows7/Choose-which-games-children-can-play

  • Installing Application Server 10g 2 on Unbreakable linux

    Hello all,
    I wish to install Application Server 10g 2 on Oracle Unbreakable Linux EL5. Could someone please let me know if there are installation instructions for the App Server on EL5?
    Also, when I go to [http://www.oracle.com/technology/software/products/ias/htdocs/101202.html] to download release 2 for Linux x86, the tooltip has the file named as "as_linux_x86_portal_wireless_101202_disk1.cpio". Does anyone know if this is actually the App Server???
    Last, but not least, I downloaded disk 1(I'm assuming it's the correct software) and tried to "unzip" it in /home/oracle to run the Universal Installer and Oracle Unbreakable Linux doesn't recognize the file extension .cpio. So my last question then would be is Oracle Unbreakable Linux even a suitable version of Linux to install the App Server on? Because it seems strange that the software Oracle has on its website can't even be opened on their own flavor of Linux.
    Any help answering my questions will be appreciated.
    -Thank You,
    David Wrbelis

    Hi,
    I did just a while ago.
    If you got a joice, use Unbreakable Linux 4 (RHEL4), 10g2 on Unbreakable Linux version 5 is not officially supported by Oracle!
    At least my Server was complaining about the system. After extracting the .cpio you can either use
    ./runInstaller -ignoreSysPrereqs
    or go to redhat-release file (I'm not sure in the moment, I believe its /etc/redhat-release) and set it to version 4 instead of 5 until installation is done.
    You will get an error during installation, when it appears rename libXtst.so.6.0.0 to libXtst.so.6.0 and press retry, the installation will finish successfully.
    You might get an error that opmn could not start. Start it manually, the error won't appear, you can ignore it (press continue).
    Your config wizards should ALL be successful!
    About the file you downloaded, I was using a different one, since I only needed Forms and Reports service, you might want to have the full Server, so there are more than one correct downloads for 10g2. You need to look carefully what features you need or load full version (which would be several cds I believe).
    Regards
    Edited by: n00b on 19.09.2008 09:32

  • Oracle Linux root password

    Hello,
    I installed Virtual Box and the pre built java development VM (http://www.oracle.com/technetwork/community/javadev-vm-192138.html). However I am not sure what the default password for root is. I can sign in as the glassfish user as in the documentation, but this user is not able to create directories. How do I reset the root password or does anyone know what the default root password is.
    Thanks
    Mike

    HI:
    Tip 1) try ovsroot as password... in the Oracle VM templates this is commonly used.
    Tip 2) do some documentation reading...
    Tip 3) If 1 & 2 are not working hack your box :-)
    - reboot your machine, go into the grub menu and add a 1 after your startup line. This will make sure you will go to runlevel 1 when you boot. Now you can change your root password.
    You can find lots of manuals on how to do this... please find one example here: http://www.labtestproject.com/linuse/change_root_password.html
    regards,
    Johan Louwers

  • Hello , I want ask you, how can I refuse purchase application, Hello , I want ask you, how can I refuse purchase application Lingvo Dictionaries , ID:MHQTYLHNGH, I accidentally pressed the button to buy and went to boot without requiring a password

    Hello , I want ask you, how can I refuse purchase application, Hello , I want ask you, how can I refuse purchase application Lingvo Dictionaries , ID:MHQTYLHNGH, I accidentally pressed the button to buy and went to boot without requiring a password, Help me please.

    Contact Apple iTunes support: http://www.apple.com/support/itunes/contact/

  • "This Application requires Adobe Air to be installed"

    Hey guys
    I got my self a project which i need to use on the emulator.
    But every time i publish my flash project to the emulator, i get an error saying
    "This Application requires Adobe Air to be installed" eventho i do have Adobe Air installed & updated
    In case it matters i have the Runtime_Emulator_Froyo_20100930 installed and i use Vista SP1.
    Hopefully somebody can help me out here
    Thanks in advance

    No No, Sorry aha I installed Windows 8, which was fine. I didnt like it much so I tried doing a system restore assuming I could just go back to Windows 7 (What my friend told me). I found out eventually I couldnt obviously, but before I found out I figured the "Reset Your PC" option would be like a system restore and would go back to Windows 7. All my Programmes got deleted, which I was fine about so I just went to go install them again but Photoshop is telling me I cant install it due to not having the system requirements. But the only requirement I believe I dont have is Windows 7, but like I said before... I've seen others with Windows 8 having Photoshop..
    A system Image Backup, nope.. I dont. My friend told me that it was just a trial and I would go back to Windows 7 once the trial is up. (I should do my own research in future)
    I hope this was clear enough, again it's pretty late and I'm just stressed over loosing everything. Thank you for getting back to me so soon also - Any other tips on how to maybe get it? I dont think I have any traces of Adobe left since all my programmes got deleted, the only other thing I have is Adobe Flash.

  • How do I change the Linux based LMS 4.2 root password

    How do I change the Linux based LMS 4.2 root password?  I tried "passwd" and "passwd root" while in shell mode and it said "passwd: all authenticaiton tokens updated successfully."  However it makes me use the old password to get into the shell.

    Hi,
    Did you saved the config after updating the password ?
    try this command " copy run start" after changing the password.
    Thanks-
    Afroz
    ****Ratings Encourages Contributors ***

Maybe you are looking for

  • Dip to Color Dissolve + Widescreen Matte

    Forum, When my Dip to Color Dissolve comes in my black bars (wide screen matte) are trumped by the dissolve. I'm looking for a way to keep the bars all the way through the end of the Dip to Color Dissolve. No such luck yet. Thanks to anyone that can

  • [Solved] How to start wpa_gui with the acpid

    I have written a script, which start my wlan. #!/bin/bash #/usr/local/bin/wlan function wlan_start { # a workaround. reload the module modprobe -r iwlagn modprobe iwlagn ifconfig wlan0 up dhcpcd -b -q -t 0 wlan0 wpa_supplicant -iwlan0 -c/etc/wpa_supp

  • My Ipod needs hardware repair, but don't have proof-of-purchase

    Hi guys, I'm new over here. I don't know if I'm even posting in the right place, or if these forums are here for this kinds of questions. Sorry If I'm using them the wrong way... The thing is that I'm having some troubles with my Ipod Touch. I first

  • CPI : Duplicate "site groups" after upgrade

    Hello, We encounter a duplicate entry for "site groups" after upgrade from Cisco Prime Infrastructure 1.2 to PI 1.3. This is visible under the Lifecycle view. Have you ever seen this issue ? Anyone know how to remove one of it without losing data ? T

  • Classification of material

    Hi, gurus here. Some needed infomation about material are stored in its' classification. I can not find the classification in 0material's masterdata. I viewed the general info of classification. All characteristic descriptions of tab general's data e