I am trying to build a new version which complies to the PCLinuxOS standards, and do I have concerns about security, because of the installer which does not require the root password before being launched. The problem is that some people see the CD as something quite innocent as it is meant for small children, and may not realise that it is a full featured Operating System, which can be installed to hard drive from the Live session, even though they are told so.
As you know this is a project which has been worked on for a long time, and which starts to get known a little just now. It is mostly a parent's project : myself and all the people who brought lists of edu programs to try in it, all who tested, all have young children, among them some children have tested and given feedback brought by their parents, and this all took almost 2 years. We also have files to make DVD covers and CD covers, and all the sources are available. (I won't repeat it here, but I can gather again the info about it somewhere else, if someone has the wish to see all the info in one place).
With djohnston who did a lot of work on it, we started to work on a documentation, which we are now continuing with Desmoric who has good ideas too : it will be available in English and in French, and will be meant to be printed and go along this version, but even with a documentation so well thought we will try to do, the people might not pay attention enough. If I say so it is because I met with a bad experience after I handed a CD with a gnarly narcos branded Edu system once, where a person of the family in visit was handed this one CD and destroyed all the datas, happily choosing the "Install to CD" boot stanza.
So for one, would it be alright to remove this boot stanza from the ISO especially - and only - for the Edu version ? (which is a feature that Texstar added to mylivecd only at the end of last year in the Live CD), then would it be ok to tweak the draklive-install desktop file a bit to make it prompt for the root password when launched from the menus ?
I would be very happy to create the next one in a way that fits the standards, without putting the datas of the parents or the schools at stake, just because child games don't look so dangerous to the people having little knowledge about OS'es.
Last, for the Education version I prefer having some settings in the policykit conf lines which also prevents access to internal partitions without a root password, without however cutting completely the access, for access can also sometimes be very handy.
I would like to please the people of the team in charge to take their time to think and to take about this, it is a very serious concern for me.