[Pkg-utopia-maintainers] Bug#860040: Bug#866612: network-manager: no permission to toggle network/wifi

Michael Biebl biebl at debian.org
Sun Jul 23 13:54:15 UTC 2017


Am 23.07.2017 um 14:30 schrieb Yves-Alexis Perez:
> On Sun, 2017-07-23 at 12:13 +0200, Yves-Alexis Perez wrote:
>> On Sun, 2017-07-23 at 04:30 +0200, Michael Biebl wrote:
>>>
>>>>> There is https://bugzilla.redhat.com/show_bug.cgi?id=1130796 which
>>> provides some more background and also mentions a workaround, i.e.
>>> mounting proc with gid=<somegroup> and adding polkitd to that group.
>>> I haven't actually tested that though.
>>
>> Thanks, I'll try the gid thing and report back, but I had the impression that
>> the /proc/1/cgroup access was done as my user/group and not by polkitd as
>> polkitd user/group.
> 
> Confirmed, giving access to /proc to polkitd user (running polkitd) is not
> enough, the authentication agent seems to requires that as well (and granting
> my user access to /proc denies the interest of hidepid).

Yeah, the polkitd user is actually experimental only. The version in
unstable runs as root.

Hm, I guess this means you'd have to add your user to that group as well
(or rather any user who wants to use polkit). Which sort of defeats the
purpose of hidepid=2 to some extent.



-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-utopia-maintainers/attachments/20170723/e1700daf/attachment.sig>


More information about the Pkg-utopia-maintainers mailing list