oss-sec mailing list archives
Re: Privileged File Access from Desktop Applications
From: Martin Steigerwald <martin () lichtvoll de>
Date: Thu, 11 Jul 2019 17:27:19 +0200
Malte Kraus - 09.07.19, 15:58:
None of the solutions actually provided the user with the accessed path or file operation in the polkit auth prompt. Users are confronted with an unspecific request for privileges that they can only allow or deny without knowing what exactly they are allowing. (This is unfortunately a common theme, e.g. on KDE the framework is still missing support for parameterizing polkit prompts.)
For me this looks like KDE developers address this now – at least partly: [KAuth] Add support for action details in Polkit1 backend. https://phabricator.kde.org/D21795 Thanks, -- Martin
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- Re: Privileged File Access from Desktop Applications, (continued)
- Re: Privileged File Access from Desktop Applications John Haxby (Jul 11)
- Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)
- Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)
- Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 11)
- Re: Privileged File Access from Desktop Applications Jordan Glover (Jul 12)
- Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 12)
- Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 12)
- Re: Privileged File Access from Desktop Applications Steffen Nurpmeso (Jul 12)
- Re: Privileged File Access from Desktop Applications Steffen Nurpmeso (Jul 11)
- Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)