Mailinglist Archive: opensuse-bugs (5295 mails)

< Previous Next >
[Bug 849739] AUDIT-0: kwalletmanager: Security Review requested due to suse-dbus-unauthorized-service, polkit-untracked-privilege and polkit-cant-acquire-privilege

https://bugzilla.novell.com/show_bug.cgi?id=849739

https://bugzilla.novell.com/show_bug.cgi?id=849739#c1


Sebastian Krahmer <krahmer@xxxxxxxx> changed:

What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |NEEDINFO
InfoProvider| |hrvoje.senjan@xxxxxxxxx

--- Comment #1 from Sebastian Krahmer <krahmer@xxxxxxxx> 2013-11-13 09:55:56
UTC ---
Is it really necessary to run the kwallet as a DBUS _system_ service?

Also, the function that requires the polkit action is just a dummy:

ActionReply SaveHelper::save(QVariantMap args)
{
__uid_t uid = getuid();
kDebug() << "executing uid=" << uid;

return ActionReply::SuccessReply;
}


Its from their git. Do we really need that??

From my understanding a wallet is something that should run in the
user session, therefore a DBUS session bus?!

--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >
References