https://bugzilla.novell.com/show_bug.cgi?id=732915 https://bugzilla.novell.com/show_bug.cgi?id=732915#c0 Summary: DBus security request for NetworkManager-openconnect package Classification: openSUSE Product: openSUSE 12.2 Version: Factory Platform: All OS/Version: SuSE Other Status: NEW Severity: Enhancement Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: toddrme2178@gmail.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.34 (KHTML, like Gecko) rekonq Safari/534.34 The package NetworkManager-openconnect in GNOME:Factory has the following rpmlint warning: NetworkManager-openconnect.i586: E: suse-dbus-unauthorized-service (Badness: 50) /etc/dbus-1/system.d/nm-openconnect-service.conf The package installs a DBUS system service file. If the package is intended for inclusion in any SUSE product please open a bug report to request review of the service by the security team. I would like to include this pacakge in openSUSE:Factory, so I would like to request a security audit. This software is distributed as part of the Networkmanager suite, so the same principles should apply to it as other Networkmanager vpn clients. (note: the badness of this rpmlint warning has been temporarily reduced to allow building of the package. This will be removed once the security audit is complete) Reproducible: Always Here is a quick link to the web OBS interface for the package: https://build.opensuse.org/package/show?package=NetworkManager-openconnect&project=GNOME%3AFactory -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.