Local users get to play root?
Jesse Keating
jkeating at j2solutions.net
Wed Nov 18 20:27:33 UTC 2009
On Wed, 2009-11-18 at 10:53 -0900, Jeff Spaleta wrote:
> On Wed, Nov 18, 2009 at 10:45 AM, Dan Williams <dcbw at redhat.com> wrote:
> > But that's not right because those files aren't config files. Instead,
> > you drop "local authority" files in /var/lib/polkit-1/localauthority/
> > that override those permissions on a site-by-site basis for your
> > specific use-case, irregardless of what the defaults are.
>
> Beyond the issue of what is and what is not the appropriate default at
> install time..which is already a difficult issue to talk through. I
> think there is an education gap here about how to competently admin
> PolicyKit based activities which adds frustration.
>
> -jef"old dogs...new tricks"spaleta
>
That often happens with new software. The trikiest part is finding the
proper documentation. man 8 polkit seems like a very good starting
point.
--
Jesse Keating RHCE (http://jkeating.livejournal.com)
Fedora Project (http://fedoraproject.org/wiki/JesseKeating)
GPG Public Key (geek.j2solutions.net/jkeating.j2solutions.pub)
identi.ca (http://identi.ca/jkeating)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20091118/4e75fadb/attachment.sig>
More information about the fedora-devel-list
mailing list