PolicyKit + KDE
Thiago Macieira
thiago at kde.org
Thu Sep 3 10:55:56 BST 2009
Em Quinta-feira 03 Setembro 2009, às 09:45:14, você escreveu:
> 2009/9/3 Aaron J. Seigo <aseigo at kde.org>:
> > On September 2, 2009, John Tapsell wrote:
> >> running "kdesu kill PID". The PolicyKit 'problem' sorta takes
> >> ksysguard back a step, in that before ksysguard could reliably kill a
> >> root process but now it can't without someone manually copying policy
> >> files around.
> >
> > and takes it a step forward by letting the system (or sys admin) let
> > certain users do so without having access to root or access to other root
> > privileges.
>
> Sure, it adds functionality, but it also takes away functionality in
> that if KDE is installed in some network mapped /opt drive, say, then
> ksysguard cannot kill root own processes.
It's a system admin problem.
The kdesu helper programs still need to be setuid root to do anything. And if
you run from NFS, the default is to do root squashing.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
Senior Product Manager - Nokia, Qt Development Frameworks
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
Qt Developer Days 2009 | Registration Now Open!
Munich, Germany: Oct 12 - 14 San Francisco, California: Nov 2 - 4
http://qt.nokia.com/qtdevdays2009
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20090903/be0071cb/attachment.sig>
More information about the kde-core-devel
mailing list