Not a new direction
Not a new direction
Posted Nov 19, 2009 1:43 UTC (Thu) by gmaxwell (guest, #30048)Parent article: Fedora 12 lets unprivileged users install packages
What I really don't get is the dichotomy of also shipping SELinux by default which prohibits many things that Unix has classically allowed and can be quite tricky to deal with, even with all the tools Fedora has added, while at the same time giving regular users non-trivial swaths of root access without authentication.
Fedora used to have share a clear and auditable default security policy with most the rest of unixdom. Today it's a fedora specific undocumented mismash which changes from version to version that you have to use windows registry like tools to interact with.
Posted Nov 19, 2009 1:46 UTC (Thu)
by nix (subscriber, #2304)
[Link] (3 responses)
Horribly underdocumented mishmash I agree with. I have no idea how to use
Posted Nov 19, 2009 1:51 UTC (Thu)
by rahulsundaram (subscriber, #21946)
[Link] (2 responses)
pklocalauthority(8) polkit(8) polkitd(8) pkaction(1), pkcheck(1), pkexec(1)
It could be better but it is not empty either.
Posted Nov 19, 2009 1:56 UTC (Thu)
by nix (subscriber, #2304)
[Link] (1 responses)
Posted Nov 19, 2009 4:15 UTC (Thu)
by halfline (guest, #31920)
[Link]
Not a new direction
PK: configuring it appears to require bashing largely-undocumented XML
into policy files.
Not a new direction
Not a new direction
opaque. TBH though that blog post on changing settings with polkit was
better documentation than ahything I've ever seen with polkit itself...
Not a new direction