PolicyKit + KDE

Thiago Macieira thiago at kde.org
Thu Sep 3 10:55:56 BST 2009

Em Quinta-feira 03 Setembro 2009, às 09:45:14, você escreveu:
> 2009/9/3 Aaron J. Seigo <aseigo at kde.org>:
> > On September 2, 2009, John Tapsell wrote:
> >> running "kdesu kill PID".  The PolicyKit 'problem' sorta takes
> >> ksysguard back a step, in that before ksysguard could reliably kill a
> >> root process but now it can't without someone manually copying policy
> >> files around.
> >
> > and takes it a step forward by letting the system (or sys admin) let
> > certain users do so without having access to root or access to other root
> > privileges.
> Sure, it adds functionality, but it also takes away functionality in
> that if KDE is installed in some network mapped /opt  drive, say, then
> ksysguard cannot kill root own processes.

It's a system admin problem.

The kdesu helper programs still need to be setuid root to do anything. And if 
you run from NFS, the default is to do root squashing.
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
  Senior Product Manager - Nokia, Qt Development Frameworks
      PGP/GPG: 0x6EF45358; fingerprint:
      E067 918B B660 DBD1 105C  966C 33F5 F005 6EF4 5358

Qt Developer Days 2009 | Registration Now Open!
Munich, Germany: Oct 12 - 14     San Francisco, California: Nov 2 - 4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20090903/be0071cb/attachment.sig>

More information about the kde-core-devel mailing list