Bug#843629: gvfs-backends: Incomplete/incorrect polkit rules
Michael Biebl
biebl at debian.org
Tue Nov 8 13:34:06 UTC 2016
Am 08.11.2016 um 13:47 schrieb Laurent Bigonville:
> Package: gvfs-backends
> Version: 1.29.91-1
> Severity: serious
>
> Hi,
>
> Since 1.29.91-1, gvfs is shipping polkit rules that are only working
> with the newer (>=0.112) version that is only present in experimental.
>
> For unstable, we need to add a pkla file too.
>
> Also, the rule file reference the "wheel" group which is not existing in
> debian. This should be changed to "sudo" (and/or "admin") for ubuntu
>
As discussed on IRC: That rules file allows unauthenticated access for
users in group sudo to edit root owned files.
I'm not convinced that we want to ship such a policy by default, but
rather make that opt-in. Simon suggested to ship the rules (and pkla)
file as an example.
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20161108/303571ae/attachment.sig>
More information about the pkg-gnome-maintainers
mailing list