LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

LWN.net Weekly Edition for June 6, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

PolicyKit _can_ do this

PolicyKit _can_ do this

Posted Nov 20, 2009 18:08 UTC (Fri) by mattdm (subscriber, #18)
In reply to: Fedora 12 to remove unprivileged package installation by tkil
Parent article: Fedora 12 to remove unprivileged package installation

I think your question isn't really about sudo per se, but about auth-as-self instead of auth-as-root. This is often a better choice than no-auth-at-all, particularly for desktop machines -- I want to be able to let my friend browse in Firefox at my computer and be assured that he won't (accidentally or otherwise) install packages, set the system time, etc.

And the answer is: yes, PolicyKit can do this. You set ResultAny in the policy config file to "auth_self" instead of "auth_admin" -- or to "auth_self_keep", to provide temporary caching of authorization (like the sudo typical config).

consolekit, the tool used in Red Hat derived distributions for root access for GUI (and a few command line) utils before PolicyKit, can also do this.

(Log in to post comments)

PolicyKit _can_ do this

Posted Nov 20, 2009 20:57 UTC (Fri) by tkil (subscriber, #1787) [Link]

I think your question isn't really about sudo per se, but about auth-as-self instead of auth-as-root.

Yes, exactly! Thank you for the excellent terminology.

And the answer is: yes, PolicyKit can do this. You set ResultAny in the policy config file to "auth_self" instead of "auth_admin" -- or to "auth_self_keep", to provide temporary caching of authorization (like the sudo typical config).

That's excellent, and I'll keep it in mind. (I'm currently in the "single user workstation" mode, so having to enter root's password isn't that big of a deal to me, honestly.)

If I had more energy, I'd try to follow the conversation on the mailing lists, but I should have taken my cue from the first comment here. :) I do think that the OSX and Vista models of "admin users vs. regular users" is a decent start (and actually echoes historical usage of the "wheel" group); further, I find it preferable to having to enter the root password (the default on Fedora for a while now).

(I also realize that there are at least two issues with Linux systems that OSX and Vista don't see nearly as often: (1) the person sitting at the console, regular user or admin, does need extra privs to do some entirely reasonable actions; and (2) Linux systems are far more likely to have remote users than either OSX or Vista systems.)

Also also wik, subscriber #18? Yowza. :)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds