https://nvd.nist.gov/vuln/detail/CVE-2014-2886
"GKSu 2.0.2, when sudo-mode is NOT enabled, uses " (double quote) characters in a gksu-run-helper argument,
 which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument."
EXample:
gksu -- echo 'foo\ bar'
gksu --sudo-mode -- echo 'foo\ bar'
VULN with "/apps/gksu/sudo-mode true"
because gksu without arguments does not escape the command (run_mode is set to DEFAULT_MODE),
 but with "/apps/gksu/sudo-mode true" libgksu defaults to the sudo fuller.

"Looking at the source code of gksu, it seems that this difference in behavior is by design:
	// in sudo mode, check for ' and \ in string and escape it
	if(run_mode == SUDO_MODE &&
	(strchr(newargv[i],'\'') || strchr(newargv[i],'\\')))
So the possibilities I see are two:
	1. either this is really by design;
	2. or that code relies on old libgksu behavior.
If it is the first case, then this particular difference should be properly documented."

skidoo --------------v
	  // check for, and escape, any ' and \ characters within the string
	  if(strchr(newargv[i],'\'') || strchr(newargv[i],'\\')) {





Compare the first five commands:
echo 'foo\ bar'
sudo echo 'foo\ bar'
gksudo -- echo 'foo\ bar'
gksudo --su-mode -- echo 'foo\ bar'
gksu --sudo-mode -- echo 'foo\ bar'

To this:
	gksu -- echo 'foo\ bar'
The last command prints "foo bar" rather than "foo\ bar" (excluding the quotes).


http://askubuntu.com/a/288506/10371
http://askubuntu.com/questions/21033/what-is-the-difference-between-gksudo-and-gksu/288506#288506
https://ubuntuforums.org/showthread.php?t=1819589




=======
DEPS
               gnome-pkg-tools,   {-------------- DAFUQ?
               libgtk2.0-dev (>= 2.4.0),
               libgksu2-dev (>= 2.0.8),
               libglib2.0-dev (>= 2.16),
               libgconf2-dev
=======



* Configuration

gksu uses gconf for its configuration.
Typical installed locations:
/usr/share/gksu or /usr/local/share/gksu.

the gconf stuff has been moved to libgksu


See gksu(1) for details.
