Ok, my concept of security encompasses *all* the data that the user has access to, whether connected via internal storage or external storage so that is why I considered this a "Security Vulnerability", obviously that is not the commonly accepted definition in this domain.
I sort of find it amusing that an External storage device may well have various file system permission settings to prevent users from writing/deleting data, but apparently it is accepted that they can still format the entire device anyway....... Anyway, I created a new user with standard "Desktop User" privileges, logged in as that user, inserted a USB drive and was able to format that drive without any request for further authorisation. I do not believe any formatting tools were available in previous Ubuntu releases that did not require sudo authorisation to run, so that is why I consider this new functionality to be a security issue. I will investigate the Policykit option. -- Non-admin users can format removable media https://bugs.launchpad.net/bugs/595825 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
