[Bug 465164] New: Access restriction to devices through ssh access inacceptable
https://bugzilla.novell.com/show_bug.cgi?id=465164 Summary: Access restriction to devices through ssh access inacceptable Classification: openSUSE Product: openSUSE 11.1 Version: Final Platform: Other OS/Version: openSUSE 11.1 Status: NEW Severity: Major Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: dieter.jurzitza@t-online.de QAContact: qa@suse.de Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.0.4) Gecko/2008103100 SUSE/3.0.4-2.3 Firefox/3.0.4 Build Identifier: Access to sound devices and scanner devices via remote access (ssh) is broken through HAL. Due to Danny Kukawka, this is intentional but implies significant and unneccessary usability restictions to an user. Very "normal" maintainance work cannot be done remotely any more and one is forced to do a root login to perform tasks that actually do not require this. _This_ is a security issue for no reason. Reproducible: Always Steps to Reproduce: Try to play sound as user !=root via "ssh" when not being logged in locally, try to access scanner via user != root ... Actual Results: No special setup neccessary Expected Results: Expected results: a regular user should have the very same rights via ssh as he has via direct login. An exported desktop on a remote machine should allow the required interaction for maintainance access without local root access to probably help users when issues pop up. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=465164
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=465164
User lnussel@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=465164#c1
Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=465164
User dieter.jurzitza@t-online.de added comment
https://bugzilla.novell.com/show_bug.cgi?id=465164#c2
--- Comment #2 from Dieter Jurzitza
https://bugzilla.novell.com/show_bug.cgi?id=465164
User dieter.jurzitza@t-online.de added comment
https://bugzilla.novell.com/show_bug.cgi?id=465164#c3
Dieter Jurzitza
https://bugzilla.novell.com/show_bug.cgi?id=465164
User lnussel@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=465164#c4
Ludwig Nussel
So, I'd suggest at least providing an option to set a variable allowing ssh'ed remote logins to gain access to local devices.
PolicyKit would need to support that first. There are no implicit privileges for remote access atm. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com