Bug ID 1040040
Summary Audit: gvfs - Please add untracked privs.
Classification openSUSE
Product openSUSE Tumbleweed
Version Current
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee security-team@suse.de
Reporter zaitor@opensuse.org
QA Contact qa-bugs@suse.de
Found By ---
Blocker --- 

For current gvfs in TW, please add privileges not listed in
/etc/polkit-default-privs.*

[  163s] RPMLINT report:
[  163s] ===============
[  166s] gvfs-backends.x86_64: I: polkit-untracked-privilege
org.gtk.vfs.file-operations-helper (no:no:auth_admin_keep)
[  166s] gvfs-backends.x86_64: I: polkit-untracked-privilege
org.gtk.vfs.file-operations (no:no:auth_admin_keep)
[  166s] The privilege is not listed in /etc/polkit-default-privs.* which makes
it
[  166s] harder for admins to find. If the package is intended for inclusion in
any
[  166s] SUSE product please open a bug report to request review of the package
by the
[  166s] security team
[  166s] 
[  166s] gvfs-backends.x86_64: I: polkit-cant-acquire-privilege
org.gtk.vfs.file-operations-helper (no:no:auth_admin_keep)
[  166s] gvfs-backends.x86_64: I: polkit-cant-acquire-privilege
org.gtk.vfs.file-operations (no:no:auth_admin_keep)
[  166s] Usability can be improved by allowing users to acquire privileges via
[  166s] authentication. Use e.g. 'auth_admin' instead of 'no' and make sure to
define
[  166s] 'allow_any'. This is an issue only if the privilege is not listed in
/etc
[  166s] /polkit-default-privs.*


We are not asking for extend privs here, just that it gets added to
polkit-default-privs.standard so admins/users can find it without looking at
build-logs.

You are receiving this mail because: