Mailinglist Archive: opensuse-bugs (4284 mails)

< Previous Next >
[Bug 1040040] New: Audit: gvfs - Please add untracked privs.
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Sat, 20 May 2017 22:09:43 +0000
  • Message-id: <bug-1040040-21960@http.bugzilla.opensuse.org/>
http://bugzilla.opensuse.org/show_bug.cgi?id=1040040


Bug ID: 1040040
Summary: Audit: gvfs - Please add untracked privs.
Classification: openSUSE
Product: openSUSE Tumbleweed
Version: Current
Hardware: Other
OS: Other
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Security
Assignee: security-team@xxxxxxx
Reporter: zaitor@xxxxxxxxxxxx
QA Contact: qa-bugs@xxxxxxx
Found By: ---
Blocker: ---

For current gvfs in TW, please add privileges not listed in
/etc/polkit-default-privs.*

[ 163s] RPMLINT report:
[ 163s] ===============
[ 166s] gvfs-backends.x86_64: I: polkit-untracked-privilege
org.gtk.vfs.file-operations-helper (no:no:auth_admin_keep)
[ 166s] gvfs-backends.x86_64: I: polkit-untracked-privilege
org.gtk.vfs.file-operations (no:no:auth_admin_keep)
[ 166s] The privilege is not listed in /etc/polkit-default-privs.* which makes
it
[ 166s] harder for admins to find. If the package is intended for inclusion in
any
[ 166s] SUSE product please open a bug report to request review of the package
by the
[ 166s] security team
[ 166s]
[ 166s] gvfs-backends.x86_64: I: polkit-cant-acquire-privilege
org.gtk.vfs.file-operations-helper (no:no:auth_admin_keep)
[ 166s] gvfs-backends.x86_64: I: polkit-cant-acquire-privilege
org.gtk.vfs.file-operations (no:no:auth_admin_keep)
[ 166s] Usability can be improved by allowing users to acquire privileges via
[ 166s] authentication. Use e.g. 'auth_admin' instead of 'no' and make sure to
define
[ 166s] 'allow_any'. This is an issue only if the privilege is not listed in
/etc
[ 166s] /polkit-default-privs.*


We are not asking for extend privs here, just that it gets added to
polkit-default-privs.standard so admins/users can find it without looking at
build-logs.

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >
Follow Ups