On 2016-10-28 09:31, John Andersen wrote:
On October 27, 2016 8:30:17 PM PDT, Andrei Borzenkov <> wrote:
27.10.2016 22:27, John Andersen пишет:
Where, precisely is the correct place to adjust these things in systemd?
When user logs in on a local console, logind applies ACLs that grant this user read-write access to every device that has "uaccess" tag. Tag is set by udev rules.
That's all well and good, but people do not manage permissions by udev rules.
If a user is authorized to use the CD-ROM, they have to be in the cdrom group, and perhaps at the console.
You forget ACLs.
And putting them back into that group appears to be all that was necessary.
So I don't see what udev has to do with it, and the root cause here must be that the update hozed the passwd and group files.
udev creates the devices that you want to access with the permissions that it thinks are needed initially. And logind changes those permissions. The idea is that the user that is at the seat gets permissions to access physical devices automatically, whoever he is. The admin changing the group permissions is another method, but it is not automatic and it is fixed. Changing groups is not the current method used by the distribution. The update did not change passwd and group files at all. -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar)