![](https://seccdn.libravatar.org/avatar/3035b38ff33cf86f480bb169b8500b80.jpg?s=120&d=mm&r=g)
http://bugzilla.novell.com/show_bug.cgi?id=614779
http://bugzilla.novell.com/show_bug.cgi?id=614779#c17
--- Comment #17 from Ludwig Nussel
(In reply to comment #13)
So without further review I'd change all org.opensuse.cupspkhelper* to 'auth_admin_keep' so polkit doesn't prompt all the time at least ('auth_admin_keep_session' doesn't exist anymore with polkit1). The current 'auth_admin' setting is unchanged since 11.1 btw.
Hrm, weird. I wonder why it wasn't asking for password more than once in the past, then, since it was already using more than once dbus methods.
Indeed. Could be called bypass of intended access restrictions :-)
Cups apparently didn't have the CUPS-Get-Devices ACL previously so that would explain why listing devices didn't require authentication. The other differences are probably related to change in behavior between PolicyKit and polkit1. The former kept the authentication for the life time of the process by default unless explicitly declared one-shot. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.