| 1 |
On 01/30/2012 03:05 PM, Ulrich Mueller wrote: |
| 2 |
>>>>>> On Mon, 30 Jan 2012, Samuli Suominen wrote: |
| 3 |
> |
| 4 |
>> was asked about this at IRC today, so I suppose we should convey this |
| 5 |
>> information better to users |
| 6 |
> |
| 7 |
>> Title: Default value of AdminIdentities changed to group wheel in PolicyKit |
| 8 |
> |
| 9 |
> Too long, GLEP 42 allows a maximum of 44 characters (excluding "Title: "). |
| 10 |
> |
| 11 |
>> Author: Samuli Suominen<ssuominen@g.o> |
| 12 |
>> Content-Type: text/plain |
| 13 |
>> Posted: 2012-01-30 |
| 14 |
>> Revision: 1 |
| 15 |
>> News-Item-Format: 1.0 |
| 16 |
>> Display-If-Installed: sys-auth/polkit |
| 17 |
> |
| 18 |
>> The default value of AdminIdentities changed to group wheel by upstream |
| 19 |
>> since version 0.103. |
| 20 |
> |
| 21 |
> Maybe the package name sys-auth/polkit should appear somewhere in the |
| 22 |
> item's body text? |
| 23 |
> |
| 24 |
>> This means users in group wheel are allowed to execute commands like |
| 25 |
>> "pkexec bash" to gain root shell. |
| 26 |
> |
| 27 |
>> You can change the default value at: |
| 28 |
>> # $EDITOR /etc/polkit-1/localauthority.conf.d/50-localauthority.conf |
| 29 |
> |
| 30 |
|
| 31 |
... this is no longer relevant as I've just pushed 0.104-r1 for fast |
| 32 |
stabilization within security bug restoring the old behavior as per |
| 33 |
recommendation of the gentoo security team (a3li mostly ;-) |
Archives