> On Jun 30, 2015, at 6:47 AM, intrigeri <intrigeri@???> wrote:
>
> Peter N. Glaskowsky wrote (12 Jun 2015 19:45:09 GMT) :
>> From a UX perspective, I am curious what the reasoning is behind the policy of
>> associating access to local storage devices with the entry of an arbitrary
>> admin password.
>
> The goal here is to implement the "leave no trace on the computer you
> are using unless you ask it explicitly" promise we make to users.
Okay, that’s good. I agree with that. It might be worth making that connection clearer, like saying “Entering an administrative password enables modification of local filesystems. Use with care."
>> I’m also curious whether internal storage devices are truly locked out if the current
>> user didn’t enter an admin password. Is it just that we don’t auto-mount the
>> filesystems, or is it more secure than that?
>
> Without admin credentials, one simply cannot mount internal drives.
That’s also good to hear. Thanks!
. png
