Ok, I'm rather unfamiliar with the KDE Wallet, but I feel I should be slightly concerned that something potentially damaging to my system (KPackageKit) can activate, download and install changes without asking permission. If I do not open the Wallet, said system dosent activate. Can someone please explain to me why it is done this way, and if this is a possible risk?

Cheers

-Dante

Dante Ashton wrote:Ok, I'm rather unfamiliar with the KDE Wallet, but I feel I should be slightly concerned that something potentially damaging to my system (KPackageKit) can activate, download and install changes without asking permission. If I do not open the Wallet, said system dosent activate. Can someone please explain to me why it is done this way, and if this is a possible risk?

The first thing that springs to mind: have you at some point been asked by kwallet if the login/password combination should be stored? If so, you might have inadvertently clicked the "allow always" button. You can always check in kwallet what permissions have been granted though.

Another alternative is that your distro has packaged things so that kpackagekit and kwallet trusts eachother from the start. Again, this can be checked (and reverted if need be) through kwallet itself.

It seems likely to be the latter, Kwallet has no record of KPackageKit. Can someone please have strong words with Kubuntu devs? Clue-bats may be freely used :P

Hi,

disable it by: System settings -> Advanced -> PolicyKit Authorisation

good luck